Vulnerability Details CVE-2008-3547
Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for "companies and clients."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.127
EPSS Ranking 93.6%
CVSS Severity
CVSS v2 Score 9.0
References
- http://bugs.debian.org/493714
- http://bugs.gentoo.org/show_bug.cgi?id=233929
- http://marc.info/?l=oss-security&m=121787604812284&w=2
- http://marc.info/?l=oss-security&m=121790659421159&w=2
- http://marc.info/?l=oss-security&m=121797672406282&w=2
- http://marc.info/?l=oss-security&m=121814230706576&w=2
- http://secunia.com/advisories/34161
- http://security.gentoo.org/glsa/glsa-200903-09.xml
- http://sourceforge.net/project/shownotes.php?release_id=617243
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49221
- http://bugs.debian.org/493714
- http://bugs.gentoo.org/show_bug.cgi?id=233929
- http://marc.info/?l=oss-security&m=121787604812284&w=2
- http://marc.info/?l=oss-security&m=121790659421159&w=2
- http://marc.info/?l=oss-security&m=121797672406282&w=2
- http://marc.info/?l=oss-security&m=121814230706576&w=2
- http://secunia.com/advisories/34161
- http://security.gentoo.org/glsa/glsa-200903-09.xml
- http://sourceforge.net/project/shownotes.php?release_id=617243
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49221
Products affected by CVE-2008-3547
-
cpe:2.3:a:openttd:openttd:0.1.1
-
cpe:2.3:a:openttd:openttd:0.1.2
-
cpe:2.3:a:openttd:openttd:0.1.3
-
cpe:2.3:a:openttd:openttd:0.1.4
-
cpe:2.3:a:openttd:openttd:0.2.0
-
cpe:2.3:a:openttd:openttd:0.2.1
-
cpe:2.3:a:openttd:openttd:0.3.0
-
cpe:2.3:a:openttd:openttd:0.3.1
-
cpe:2.3:a:openttd:openttd:0.3.2
-
cpe:2.3:a:openttd:openttd:0.3.2.1
-
cpe:2.3:a:openttd:openttd:0.3.3
-
cpe:2.3:a:openttd:openttd:0.3.4
-
cpe:2.3:a:openttd:openttd:0.3.5
-
cpe:2.3:a:openttd:openttd:0.3.6
-
cpe:2.3:a:openttd:openttd:0.3.7
-
cpe:2.3:a:openttd:openttd:0.4.0
-
cpe:2.3:a:openttd:openttd:0.4.0.1
-
cpe:2.3:a:openttd:openttd:0.4.5
-
cpe:2.3:a:openttd:openttd:0.4.6
-
cpe:2.3:a:openttd:openttd:0.4.7
-
cpe:2.3:a:openttd:openttd:0.4.8
-
cpe:2.3:a:openttd:openttd:0.5.0
-
cpe:2.3:a:openttd:openttd:0.5.1
-
cpe:2.3:a:openttd:openttd:0.5.2
-
cpe:2.3:a:openttd:openttd:0.5.3
-
cpe:2.3:a:openttd:openttd:0.6.0
-
cpe:2.3:a:openttd:openttd:0.6.1