National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:openttd:openttd:0.4.6
There are 14 matching records.
Vuln ID Summary CVSS Severity
CVE-2013-6411

The HandleCrashedAircraft function in aircraft_cmd.cpp in OpenTTD 0.3.6 through 1.3.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) by crashing an aircraft outside of the map.

Published: December 14, 2013; 12:21:47 PM -05:00
V2: 5.0 MEDIUM
CVE-2012-0048

OpenTTD 0.3.5 through 1.1.4 allows remote attackers to cause a denial of service (game pause) by connecting to the server and not finishing the (1) authorization phase or (2) map download, aka a "slow read" attack.

Published: August 25, 2012; 06:29:49 AM -04:00
V2: 4.3 MEDIUM
CVE-2011-3343

Multiple buffer overflows in OpenTTD before 1.1.3 allow local users to cause a denial of service (daemon crash) or possibly gain privileges via (1) a crafted BMP file with RLE compression or (2) crafted dimensions in a BMP file.

Published: September 08, 2011; 02:55:01 PM -04:00
V2: 4.6 MEDIUM
CVE-2011-3342

Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors related to (1) NAME, (2) PLYR, (3) CHTS, or (4) AIPL (aka AI config) chunk loading from a savegame.

Published: September 08, 2011; 02:55:01 PM -04:00
V2: 7.5 HIGH
CVE-2011-3341

Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted CMD_INSERT_ORDER command.

Published: September 08, 2011; 02:55:01 PM -04:00
V2: 7.5 HIGH
CVE-2010-2534

The NetworkSyncCommandQueue function in network/network_command.cpp in OpenTTD before 1.0.3 does not properly clear a pointer in a linked list, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted request, related to the client command queue.

Published: July 28, 2010; 08:48:53 AM -04:00
V2: 5.0 MEDIUM
CVE-2010-0406

OpenTTD before 1.0.1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and daemon crash) by performing incomplete downloads of the map.

Published: May 05, 2010; 09:22:55 AM -04:00
V2: 4.0 MEDIUM
CVE-2010-0402

OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command.

Published: May 05, 2010; 09:22:54 AM -04:00
V2: 6.5 MEDIUM
CVE-2010-0401

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

Published: May 05, 2010; 09:22:54 AM -04:00
V2: 6.5 MEDIUM
CVE-2009-4007

Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD before 0.7.5-RC1 allows remote attackers to cause a denial of service (daemon crash) via certain game actions involving a wagon and a dual-headed engine.

Published: December 28, 2009; 02:30:00 PM -05:00
V2: 5.0 MEDIUM
CVE-2008-3547

Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for "companies and clients."

Published: March 10, 2009; 05:30:00 PM -04:00
V2: 9.0 HIGH
CVE-2008-3576

Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted string. NOTE: some of these details are obtained from third party information.

Published: August 10, 2008; 05:41:00 PM -04:00
V2: 10.0 HIGH
CVE-2008-3577

Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments.

Published: August 10, 2008; 05:41:00 PM -04:00
V2: 4.6 MEDIUM
CVE-2006-1998

OpenTTD 0.4.7 and earlier allows local users to cause a denial of service (application exit) via a large invalid error number, which triggers an error.

Published: April 25, 2006; 08:50:00 AM -04:00
V2: 2.1 LOW