Lucene search
HistoryAug 10, 2008 - 9:41 p.m.
CVE-2008-3577
cve-2008-3577
buffer overflow
openttd
code execution
security vulnerability
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the “-g” parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments.
Affected configurations
Node
openttdopenttdMatch0.1.1
ORopenttdopenttdMatch0.1.2
ORopenttdopenttdMatch0.1.3
ORopenttdopenttdMatch0.1.4
ORopenttdopenttdMatch0.2.0
ORopenttdopenttdMatch0.2.1
ORopenttdopenttdMatch0.3.0
ORopenttdopenttdMatch0.3.1
ORopenttdopenttdMatch0.3.2
ORopenttdopenttdMatch0.3.2.1
ORopenttdopenttdMatch0.3.3
ORopenttdopenttdMatch0.3.4
ORopenttdopenttdMatch0.3.5
ORopenttdopenttdMatch0.3.6
ORopenttdopenttdMatch0.4.0
ORopenttdopenttdMatch0.4.0.1
ORopenttdopenttdMatch0.4.5
ORopenttdopenttdMatch0.4.6
ORopenttdopenttdMatch0.4.7
ORopenttdopenttdMatch0.4.8
ORopenttdopenttdMatch0.4.8rc1
ORopenttdopenttdMatch0.4.8rc2
ORopenttdopenttdMatch0.5.0
ORopenttdopenttdMatch0.5.0rc1
ORopenttdopenttdMatch0.5.0rc2
ORopenttdopenttdMatch0.5.0rc3
ORopenttdopenttdMatch0.5.0rc4
ORopenttdopenttdMatch0.5.0rc5
ORopenttdopenttdMatch0.5.1
ORopenttdopenttdMatch0.5.1rc1
ORopenttdopenttdMatch0.5.1rc2
ORopenttdopenttdMatch0.5.1rc3
ORopenttdopenttdMatch0.5.2
ORopenttdopenttdMatch0.5.2rc1
ORopenttdopenttdMatch0.5.3
ORopenttdopenttdMatch0.5.3rc1
ORopenttdopenttdMatch0.5.3rc2
ORopenttdopenttdMatch0.5.3rc3
ORopenttdopenttdMatch0.6.0
ORopenttdopenttdMatch0.6.0beta1
ORopenttdopenttdMatch0.6.0beta2
ORopenttdopenttdMatch0.6.0beta3
ORopenttdopenttdMatch0.6.0beta4
ORopenttdopenttdMatch0.6.0beta5
ORopenttdopenttdMatch0.6.0rc1
ORopenttdopenttdMatch0.6.1
ORopenttdopenttdMatch0.6.1rc1
ORopenttdopenttdMatch0.6.1rc2
Related
nvd
nvd
CVE-2008-3577
2008-08-10 21:41:00
debiancve
debiancve
CVE-2008-3577
2008-08-10 21:41:00
prion
prion
Buffer overflow
2008-08-10 21:41:00
ubuntucve
ubuntucve
CVE-2008-3577
2008-08-10 00:00:00
cvelist
cvelist
CVE-2008-3577
2008-08-10 21:00:00
nessus
nessus
GLSA-200903-09 : OpenTTD: Execution of arbitrary code
2009-03-08 00:00:00
gentoo
gentoo
OpenTTD: Execution of arbitrary code
2009-03-07 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200903-09 (openttd)
2009-03-13 00:00:00
Gentoo Security Advisory GLSA 200903-09 (openttd)
2009-03-13 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2008-3577