CVSS: 10.0EPSS: 13%CPEs: 3EXPL: 0CVE-2008-3576
https://notcve.org/view.php?id=CVE-2008-3576
10 Aug 2008 — Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted string. NOTE: some of these details are obtained from third party information. Desbordamiento de búfer en la función TruncateString en src/gfx.cpp en OpenTTD anterior a 0.6.2, permite a atacantes remotos provocar una denegación de servicio (caída de demonio) o posiblemente la ejecución de código de su elecci... • http://bugs.gentoo.org/show_bug.cgi?id=233929 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 48EXPL: 0CVE-2008-3577
https://notcve.org/view.php?id=CVE-2008-3577
10 Aug 2008 — Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments. Desbordamiento de búfer en src/openttd.cpp en OpenTTD anterior a 0.6.2, permite a usuarios locales ejecutar código de su elección a través de un nombre de archivo largo proporcionando el parámetro "-g" en la función ttd_main. NOTA: es ... • http://bugs.gentoo.org/show_bug.cgi?id=233929 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 2CVE-2006-1998 – OpenTTD 0.4.7 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2006-1998
25 Apr 2006 — OpenTTD 0.4.7 and earlier allows local users to cause a denial of service (application exit) via a large invalid error number, which triggers an error. • https://www.exploit-db.com/exploits/1709 •
CVSS: 9.8EPSS: 2%CPEs: 15EXPL: 0CVE-2005-2763
https://notcve.org/view.php?id=CVE-2005-2763
06 Sep 2005 — Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. • http://bugs.gentoo.org/show_bug.cgi?id=102631 •