CVSS: 8.8EPSS: 1%CPEs: 52EXPL: 0CVE-2010-0402
https://notcve.org/view.php?id=CVE-2010-0402
04 May 2010 — OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command. Versiones de OpenTTD anteriores a v1.0.1 no validan correctamente los valores índice de ciertos elementos, esto permite a usuarios autenticados remotamente causar una denegación de servicio (caída del demonio) o posiblemente ejecutar código de su elección a través de comandos del ju... • http://secunia.com/advisories/39669 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 52EXPL: 0CVE-2010-0406
https://notcve.org/view.php?id=CVE-2010-0406
04 May 2010 — OpenTTD before 1.0.1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and daemon crash) by performing incomplete downloads of the map. Versiones de OpenTTD anteriores a v1.0.1 permiten a atacantes remotos causar una denegación de servicio (agotamiento del descriptor de fichero y caída del demonio) realizando descargas incompletas del mapa. • http://bugs.openttd.org/task/3785 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 1%CPEs: 52EXPL: 0CVE-2009-4007
https://notcve.org/view.php?id=CVE-2009-4007
28 Dec 2009 — Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD before 0.7.5-RC1 allows remote attackers to cause a denial of service (daemon crash) via certain game actions involving a wagon and a dual-headed engine. Vulnerabilidad no especificada en la función NormaliseTrainConsist en src/train_cmd.cpp en OpenTTD versiones anteriores a v0.7.5-RC1 permite a atacantes remotos provocar una denegación de servicio (parada del demonio) mediante ciertas acciones del juego relacion... • http://binaries.openttd.org/releases/0.7.5/changelog.txt •
CVSS: 9.0EPSS: 12%CPEs: 49EXPL: 0CVE-2008-3547
https://notcve.org/view.php?id=CVE-2008-3547
10 Mar 2009 — Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for "companies and clients." Desbordamiento de búfer en el servidor en OpenTTD v0.6.1 y anteriores permite a usuarios remotos autentificados producir una denegación de servicio (continua interrupción del juego) o posiblemente ejecutar código arbitrario a través de vectores incluyendo muc... • http://bugs.debian.org/493714 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 13%CPEs: 3EXPL: 0CVE-2008-3576
https://notcve.org/view.php?id=CVE-2008-3576
10 Aug 2008 — Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted string. NOTE: some of these details are obtained from third party information. Desbordamiento de búfer en la función TruncateString en src/gfx.cpp en OpenTTD anterior a 0.6.2, permite a atacantes remotos provocar una denegación de servicio (caída de demonio) o posiblemente la ejecución de código de su elecci... • http://bugs.gentoo.org/show_bug.cgi?id=233929 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 48EXPL: 0CVE-2008-3577
https://notcve.org/view.php?id=CVE-2008-3577
10 Aug 2008 — Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments. Desbordamiento de búfer en src/openttd.cpp en OpenTTD anterior a 0.6.2, permite a usuarios locales ejecutar código de su elección a través de un nombre de archivo largo proporcionando el parámetro "-g" en la función ttd_main. NOTA: es ... • http://bugs.gentoo.org/show_bug.cgi?id=233929 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 2CVE-2006-1998 – OpenTTD 0.4.7 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2006-1998
25 Apr 2006 — OpenTTD 0.4.7 and earlier allows local users to cause a denial of service (application exit) via a large invalid error number, which triggers an error. • https://www.exploit-db.com/exploits/1709 •
CVSS: 7.5EPSS: 12%CPEs: 1EXPL: 2CVE-2006-1999 – OpenTTD 0.4.7 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2006-1999
25 Apr 2006 — The multiplayer menu in OpenTTD 0.4.7 allows remote attackers to cause a denial of service via a UDP packet with an incorrect size, which causes the client to return to the main menu. • https://www.exploit-db.com/exploits/1709 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2764
https://notcve.org/view.php?id=CVE-2005-2764
21 Sep 2005 — Multiple buffer overflows in OpenTTD before 0.4.0.1 allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. • http://bugs.gentoo.org/show_bug.cgi?id=102631 •
CVSS: 9.8EPSS: 2%CPEs: 15EXPL: 0CVE-2005-2763
https://notcve.org/view.php?id=CVE-2005-2763
06 Sep 2005 — Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. • http://bugs.gentoo.org/show_bug.cgi?id=102631 •