Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for “companies and clients.”
bugs.debian.org/493714
bugs.gentoo.org/show_bug.cgi?id=233929
marc.info/?l=oss-security&m=121787604812284&w=2
marc.info/?l=oss-security&m=121790659421159&w=2
marc.info/?l=oss-security&m=121797672406282&w=2
marc.info/?l=oss-security&m=121814230706576&w=2
secunia.com/advisories/34161
security.gentoo.org/glsa/glsa-200903-09.xml
sourceforge.net/project/shownotes.php?release_id=617243
exchange.xforce.ibmcloud.com/vulnerabilities/49221