Lucene search

[email protected]CVE-2010-2534

HistoryJul 28, 2010 - 12:48 p.m.

CVE-2010-2534

2010-07-2812:48:53

CWE-399

[email protected]

web.nvd.nist.gov

openttd

networksynccommandqueue

denial of service

vulnerability

nvd

cve-2010-2534

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.09 Low

EPSS

Percentile

94.6%

JSON

The NetworkSyncCommandQueue function in network/network_command.cpp in OpenTTD before 1.0.3 does not properly clear a pointer in a linked list, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted request, related to the client command queue.

Affected configurations

NVD

Node

openttdopenttdMatch0.1.1

openttdopenttdMatch0.1.2

openttdopenttdMatch0.1.3

openttdopenttdMatch0.1.4

openttdopenttdMatch0.2.0

openttdopenttdMatch0.2.1

openttdopenttdMatch0.3.0

openttdopenttdMatch0.3.1

openttdopenttdMatch0.3.2

openttdopenttdMatch0.3.2.1

openttdopenttdMatch0.3.3

openttdopenttdMatch0.3.4

openttdopenttdMatch0.3.5

openttdopenttdMatch0.3.6

openttdopenttdMatch0.3.7

openttdopenttdMatch0.4.0

openttdopenttdMatch0.4.0.1

openttdopenttdMatch0.4.5

openttdopenttdMatch0.4.6

openttdopenttdMatch0.4.7

openttdopenttdMatch0.4.8

openttdopenttdMatch0.4.8rc1

openttdopenttdMatch0.4.8rc2

openttdopenttdMatch0.5.0

openttdopenttdMatch0.5.0rc1

openttdopenttdMatch0.5.0rc2

openttdopenttdMatch0.5.0rc3

openttdopenttdMatch0.5.0rc4

openttdopenttdMatch0.5.0rc5

openttdopenttdMatch0.5.1

openttdopenttdMatch0.5.1rc1

openttdopenttdMatch0.5.1rc2

openttdopenttdMatch0.5.1rc3

openttdopenttdMatch0.5.2

openttdopenttdMatch0.5.2rc1

openttdopenttdMatch0.5.3

openttdopenttdMatch0.5.3rc1

openttdopenttdMatch0.5.3rc2

openttdopenttdMatch0.5.3rc3

openttdopenttdMatch0.6.0

openttdopenttdMatch0.6.0beta1

openttdopenttdMatch0.6.0beta2

openttdopenttdMatch0.6.0beta3

openttdopenttdMatch0.6.0beta4

openttdopenttdMatch0.6.0beta5

openttdopenttdMatch0.6.0rc1

openttdopenttdMatch0.6.1

openttdopenttdMatch0.6.1rc1

openttdopenttdMatch0.6.1rc2

openttdopenttdMatch0.6.2

openttdopenttdMatch0.6.2rc1

openttdopenttdMatch0.6.2rc2

openttdopenttdMatch0.6.3

openttdopenttdMatch0.6.3rc1

openttdopenttdMatch0.7.0

openttdopenttdMatch0.7.0beta1

openttdopenttdMatch0.7.0beta2

openttdopenttdMatch0.7.0rc1

openttdopenttdMatch0.7.0rc2

openttdopenttdMatch0.7.1

openttdopenttdMatch0.7.1rc1

openttdopenttdMatch0.7.1rc2

openttdopenttdMatch0.7.1rc3

openttdopenttdMatch0.7.2

openttdopenttdMatch0.7.2rc1

openttdopenttdMatch0.7.2rc2

openttdopenttdMatch0.7.3

openttdopenttdMatch0.7.3rc1

openttdopenttdMatch0.7.3rc2

openttdopenttdMatch0.7.4

openttdopenttdMatch0.7.4rc1

openttdopenttdMatch0.7.5

openttdopenttdMatch0.7.5rc1

openttdopenttdMatch1.0.0

openttdopenttdMatch1.0.0beta1

openttdopenttdMatch1.0.0beta2

openttdopenttdMatch1.0.0beta3

openttdopenttdMatch1.0.0beta4

openttdopenttdMatch1.0.0rc1

openttdopenttdMatch1.0.0rc2

openttdopenttdMatch1.0.0rc3

openttdopenttdMatch1.0.1

openttdopenttdMatch1.0.1rc1

openttdopenttdMatch1.0.1rc2

openttdopenttdMatch1.0.2

openttdopenttdMatch1.0.2rc1

openttdopenttdMatch1.0.3rc1

CPENameOperatorVersion
openttd:openttdopenttdeq0.1.1
openttd:openttdopenttdeq0.1.2
openttd:openttdopenttdeq0.1.3
openttd:openttdopenttdeq0.1.4
openttd:openttdopenttdeq0.2.0
openttd:openttdopenttdeq0.2.1
openttd:openttdopenttdeq0.3.0
openttd:openttdopenttdeq0.3.1
openttd:openttdopenttdeq0.3.2
openttd:openttdopenttdeq0.3.2.1

CPE	Name	Operator	Version
openttd:openttd	openttd	eq	0.1.1
openttd:openttd	openttd	eq	0.1.2
openttd:openttd	openttd	eq	0.1.3
openttd:openttd	openttd	eq	0.1.4
openttd:openttd	openttd	eq	0.2.0
openttd:openttd	openttd	eq	0.2.1
openttd:openttd	openttd	eq	0.3.0
openttd:openttd	openttd	eq	0.3.1
openttd:openttd	openttd	eq	0.3.2
openttd:openttd	openttd	eq	0.3.2.1