Openttd

Openttd

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2010-0402

  • EPSS 1.4%
  • Veröffentlicht 05.05.2010 13:22:54
  • Zuletzt bearbeitet 11.04.2025 00:51:21

OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command.

6.5

CVE-2010-0401

  • EPSS 0.33%
  • Veröffentlicht 05.05.2010 13:22:54
  • Zuletzt bearbeitet 11.04.2025 00:51:21

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending...

5

CVE-2009-4007

  • EPSS 1.66%
  • Veröffentlicht 28.12.2009 19:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD before 0.7.5-RC1 allows remote attackers to cause a denial of service (daemon crash) via certain game actions involving a wagon and a dual-headed engine.

9

CVE-2008-3547

  • EPSS 12.67%
  • Veröffentlicht 10.03.2009 21:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for "companies and clients...

4.6

CVE-2008-3577

  • EPSS 0.08%
  • Veröffentlicht 10.08.2008 21:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundari...

10

CVE-2008-3576

  • EPSS 10.35%
  • Veröffentlicht 10.08.2008 21:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted string. NOTE: some of these details are obtain...

5

CVE-2006-1999

Exploit
  • EPSS 13.81%
  • Veröffentlicht 25.04.2006 12:50:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The multiplayer menu in OpenTTD 0.4.7 allows remote attackers to cause a denial of service via a UDP packet with an incorrect size, which causes the client to return to the main menu.

2.1

CVE-2006-1998

Exploit
  • EPSS 0.19%
  • Veröffentlicht 25.04.2006 12:50:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

OpenTTD 0.4.7 and earlier allows local users to cause a denial of service (application exit) via a large invalid error number, which triggers an error.

7.5

CVE-2005-2764

  • EPSS 0.77%
  • Veröffentlicht 21.09.2005 20:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple buffer overflows in OpenTTD before 0.4.0.1 allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

7.5

CVE-2005-2763

  • EPSS 2.05%
  • Veröffentlicht 06.09.2005 23:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.