6.5
CVE-2010-0401
- EPSS 1.2%
- Veröffentlicht 05.05.2010 13:22:54
- Zuletzt bearbeitet 16.06.2026 23:16:05
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.2% | 0.641 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
http://bugs.openttd.org/task/3754
http://secunia.com/advisories/39669
http://security.openttd.org/en/CVE-2010-0401