This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Openttd | First view | 2011-09-08 |
| Product | Openttd | Last view | 2019-11-07 |
| Version | 1.1.0 | Type | Application |
| Update | beta3 | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:openttd:openttd | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 4.3 | 2019-11-07 | CVE-2012-0049 | OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server. |
| 4.6 | 2011-09-08 | CVE-2011-3343 | Multiple buffer overflows in OpenTTD before 1.1.3 allow local users to cause a denial of service (daemon crash) or possibly gain privileges via (1) a crafted BMP file with RLE compression or (2) crafted dimensions in a BMP file. |
| 7.5 | 2011-09-08 | CVE-2011-3342 | Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors related to (1) NAME, (2) PLYR, (3) CHTS, or (4) AIPL (aka AI config) chunk loading from a savegame. |
| 7.5 | 2011-09-08 | CVE-2011-3341 | Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted CMD_INSERT_ORDER command. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (2) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 25% (1) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 25% (1) | CWE-189 | Numeric Errors |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 75114 | OpenTTD Memory Allocation BMP File Handling Remote Overflow |
| 75111 | OpenTTD Multiple Chunk Savegame File Handling Remote Overflow |
| 75110 | OpenTTD order_cmd.cpp CMD_INSERT_ORDER Remote Command Injection |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-08-30 | Name : Fedora Update for openttd FEDORA-2012-12198 File : nvt/gb_fedora_2012_12198_openttd_fc16.nasl |
| 2012-08-10 | Name : Debian Security Advisory DSA 2524-1 (openttd) File : nvt/deb_2524_1.nasl |
| 2012-04-02 | Name : Fedora Update for openttd FEDORA-2012-0647 File : nvt/gb_fedora_2012_0647_openttd_fc16.nasl |
| 2012-03-19 | Name : Fedora Update for openttd FEDORA-2011-12945 File : nvt/gb_fedora_2011_12945_openttd_fc16.nasl |
| 2012-02-12 | Name : FreeBSD Ports: openttd File : nvt/freebsd_openttd4.nasl |
| 2012-02-12 | Name : Gentoo Security Advisory GLSA 201111-03 (ebuild OpenTTD) File : nvt/glsa_201111_03.nasl |
| 2012-02-11 | Name : Debian Security Advisory DSA 2386-1 (openttd) File : nvt/deb_2386_1.nasl |
| 2012-02-01 | Name : Fedora Update for openttd FEDORA-2012-0623 File : nvt/gb_fedora_2012_0623_openttd_fc15.nasl |
| 2011-09-23 | Name : Fedora Update for openttd FEDORA-2011-12975 File : nvt/gb_fedora_2011_12975_openttd_fc14.nasl |
| 0000-00-00 | Name : FreeBSD Ports: openttd File : nvt/freebsd_openttd1.nasl |
| 0000-00-00 | Name : FreeBSD Ports: openttd File : nvt/freebsd_openttd2.nasl |
| 0000-00-00 | Name : FreeBSD Ports: openttd File : nvt/freebsd_openttd3.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2012-08-07 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-2524.nasl - Type: ACT_GATHER_INFO |
| 2012-01-30 | Name: The remote Fedora host is missing a security update. File: fedora_2012-0623.nasl - Type: ACT_GATHER_INFO |
| 2012-01-30 | Name: The remote Fedora host is missing a security update. File: fedora_2012-0647.nasl - Type: ACT_GATHER_INFO |
| 2012-01-18 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_1ac858b03fae11e1a1270013d3ccd9df.nasl - Type: ACT_GATHER_INFO |
| 2012-01-12 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-2386.nasl - Type: ACT_GATHER_INFO |
| 2011-11-14 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201111-03.nasl - Type: ACT_GATHER_INFO |
| 2011-10-17 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_78c25ed7f3f911e08b5cb482fe3f522d.nasl - Type: ACT_GATHER_INFO |
| 2011-10-17 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_9bad5ab1f3f611e08b5cb482fe3f522d.nasl - Type: ACT_GATHER_INFO |
| 2011-10-17 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_e77befb5f3f911e08b5cb482fe3f522d.nasl - Type: ACT_GATHER_INFO |
| 2011-10-03 | Name: The remote Fedora host is missing a security update. File: fedora_2011-12945.nasl - Type: ACT_GATHER_INFO |
| 2011-09-20 | Name: The remote Fedora host is missing a security update. File: fedora_2011-12975.nasl - Type: ACT_GATHER_INFO |
