OpenTTD -- Denial of service via improperly validated commands

2011-08-25T00:00:00
ID E77BEFB5-F3F9-11E0-8B5C-B482FE3F522D
Type freebsd
Reporter FreeBSD
Modified 2011-08-25T00:00:00

Description

The OpenTTD Team reports:

Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted CMD_INSERT_ORDER command.