Lucene search

K
cveMitreCVE-2010-0401
HistoryMay 05, 2010 - 1:22 p.m.

CVE-2010-0401

2010-05-0513:22:54
CWE-264
mitre
web.nvd.nist.gov
27
openttd
authentication
access restrictions
denial of service
cve-2010-0401

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

65.8%

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

Affected configurations

Nvd
Node
openttdopenttdRange1.0.0
OR
openttdopenttdMatch0.1.1
OR
openttdopenttdMatch0.1.2
OR
openttdopenttdMatch0.1.3
OR
openttdopenttdMatch0.1.4
OR
openttdopenttdMatch0.2.0
OR
openttdopenttdMatch0.2.1
OR
openttdopenttdMatch0.3.0
OR
openttdopenttdMatch0.3.1
OR
openttdopenttdMatch0.3.2
OR
openttdopenttdMatch0.3.2.1
OR
openttdopenttdMatch0.3.3
OR
openttdopenttdMatch0.3.4
OR
openttdopenttdMatch0.3.5
OR
openttdopenttdMatch0.3.6
OR
openttdopenttdMatch0.3.7
OR
openttdopenttdMatch0.4.0
OR
openttdopenttdMatch0.4.0.1
OR
openttdopenttdMatch0.4.5
OR
openttdopenttdMatch0.4.6
OR
openttdopenttdMatch0.4.7
OR
openttdopenttdMatch0.4.8
OR
openttdopenttdMatch0.4.8rc1
OR
openttdopenttdMatch0.5.0
OR
openttdopenttdMatch0.5.0rc1
OR
openttdopenttdMatch0.5.0rc2
OR
openttdopenttdMatch0.5.0rc3
OR
openttdopenttdMatch0.5.0rc4
OR
openttdopenttdMatch0.5.0rc5
OR
openttdopenttdMatch0.5.1
OR
openttdopenttdMatch0.5.1rc1
OR
openttdopenttdMatch0.5.1rc2
OR
openttdopenttdMatch0.5.1rc3
OR
openttdopenttdMatch0.5.2
OR
openttdopenttdMatch0.5.2rc1
OR
openttdopenttdMatch0.5.3
OR
openttdopenttdMatch0.5.3rc1
OR
openttdopenttdMatch0.5.3rc2
OR
openttdopenttdMatch0.5.3rc3
OR
openttdopenttdMatch0.6.0
OR
openttdopenttdMatch0.6.0beta1
OR
openttdopenttdMatch0.6.0beta2
OR
openttdopenttdMatch0.6.0beta3
OR
openttdopenttdMatch0.6.0beta4
OR
openttdopenttdMatch0.6.0beta5
OR
openttdopenttdMatch0.6.0rc1
OR
openttdopenttdMatch0.6.1
OR
openttdopenttdMatch0.6.1rc1
OR
openttdopenttdMatch0.6.1rc2
OR
openttdopenttdMatch0.6.2rc1
OR
openttdopenttdMatch0.6.2rc2
OR
openttdopenttdMatch0.7.4
VendorProductVersionCPE
openttdopenttd*cpe:2.3:a:openttd:openttd:*:*:*:*:*:*:*:*
openttdopenttd0.1.1cpe:2.3:a:openttd:openttd:0.1.1:*:*:*:*:*:*:*
openttdopenttd0.1.2cpe:2.3:a:openttd:openttd:0.1.2:*:*:*:*:*:*:*
openttdopenttd0.1.3cpe:2.3:a:openttd:openttd:0.1.3:*:*:*:*:*:*:*
openttdopenttd0.1.4cpe:2.3:a:openttd:openttd:0.1.4:*:*:*:*:*:*:*
openttdopenttd0.2.0cpe:2.3:a:openttd:openttd:0.2.0:*:*:*:*:*:*:*
openttdopenttd0.2.1cpe:2.3:a:openttd:openttd:0.2.1:*:*:*:*:*:*:*
openttdopenttd0.3.0cpe:2.3:a:openttd:openttd:0.3.0:*:*:*:*:*:*:*
openttdopenttd0.3.1cpe:2.3:a:openttd:openttd:0.3.1:*:*:*:*:*:*:*
openttdopenttd0.3.2cpe:2.3:a:openttd:openttd:0.3.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 521

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

65.8%