Lucene search
HistoryMay 05, 2010 - 1:22 p.m.
CVE-2010-0402
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7.4
Confidence
High
EPSS
0.004
Percentile
74.1%
OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command.
Affected configurations
Node
openttdopenttdRange≤1.0.0
ORopenttdopenttdMatch0.1.1
ORopenttdopenttdMatch0.1.2
ORopenttdopenttdMatch0.1.3
ORopenttdopenttdMatch0.1.4
ORopenttdopenttdMatch0.2.0
ORopenttdopenttdMatch0.2.1
ORopenttdopenttdMatch0.3.0
ORopenttdopenttdMatch0.3.1
ORopenttdopenttdMatch0.3.2
ORopenttdopenttdMatch0.3.2.1
ORopenttdopenttdMatch0.3.3
ORopenttdopenttdMatch0.3.4
ORopenttdopenttdMatch0.3.5
ORopenttdopenttdMatch0.3.6
ORopenttdopenttdMatch0.3.7
ORopenttdopenttdMatch0.4.0
ORopenttdopenttdMatch0.4.0.1
ORopenttdopenttdMatch0.4.5
ORopenttdopenttdMatch0.4.6
ORopenttdopenttdMatch0.4.7
ORopenttdopenttdMatch0.4.8
ORopenttdopenttdMatch0.4.8rc1
ORopenttdopenttdMatch0.5.0
ORopenttdopenttdMatch0.5.0rc1
ORopenttdopenttdMatch0.5.0rc2
ORopenttdopenttdMatch0.5.0rc3
ORopenttdopenttdMatch0.5.0rc4
ORopenttdopenttdMatch0.5.0rc5
ORopenttdopenttdMatch0.5.1
ORopenttdopenttdMatch0.5.1rc1
ORopenttdopenttdMatch0.5.1rc2
ORopenttdopenttdMatch0.5.1rc3
ORopenttdopenttdMatch0.5.2
ORopenttdopenttdMatch0.5.2rc1
ORopenttdopenttdMatch0.5.3
ORopenttdopenttdMatch0.5.3rc1
ORopenttdopenttdMatch0.5.3rc2
ORopenttdopenttdMatch0.5.3rc3
ORopenttdopenttdMatch0.6.0
ORopenttdopenttdMatch0.6.0beta1
ORopenttdopenttdMatch0.6.0beta2
ORopenttdopenttdMatch0.6.0beta3
ORopenttdopenttdMatch0.6.0beta4
ORopenttdopenttdMatch0.6.0beta5
ORopenttdopenttdMatch0.6.0rc1
ORopenttdopenttdMatch0.6.1
ORopenttdopenttdMatch0.6.1rc1
ORopenttdopenttdMatch0.6.1rc2
ORopenttdopenttdMatch0.6.2rc1
ORopenttdopenttdMatch0.6.2rc2
ORopenttdopenttdMatch0.7.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| openttd | openttd | * | cpe:2.3:a:openttd:openttd:*:*:*:*:*:*:*:* |
| openttd | openttd | 0.1.1 | cpe:2.3:a:openttd:openttd:0.1.1:*:*:*:*:*:*:* |
| openttd | openttd | 0.1.2 | cpe:2.3:a:openttd:openttd:0.1.2:*:*:*:*:*:*:* |
| openttd | openttd | 0.1.3 | cpe:2.3:a:openttd:openttd:0.1.3:*:*:*:*:*:*:* |
| openttd | openttd | 0.1.4 | cpe:2.3:a:openttd:openttd:0.1.4:*:*:*:*:*:*:* |
| openttd | openttd | 0.2.0 | cpe:2.3:a:openttd:openttd:0.2.0:*:*:*:*:*:*:* |
| openttd | openttd | 0.2.1 | cpe:2.3:a:openttd:openttd:0.2.1:*:*:*:*:*:*:* |
| openttd | openttd | 0.3.0 | cpe:2.3:a:openttd:openttd:0.3.0:*:*:*:*:*:*:* |
| openttd | openttd | 0.3.1 | cpe:2.3:a:openttd:openttd:0.3.1:*:*:*:*:*:*:* |
| openttd | openttd | 0.3.2 | cpe:2.3:a:openttd:openttd:0.3.2:*:*:*:*:*:*:* |
Related
prion
prion
Command injection
2010-05-05 13:22:00
cvelist
cvelist
CVE-2010-0402
2010-05-04 18:00:00
debiancve
debiancve
CVE-2010-0402
2010-05-05 13:22:54
cve
cve
CVE-2010-0402
2010-05-05 13:22:54
ubuntucve
ubuntucve
CVE-2010-0402
2010-05-05 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openttd-1.0.1-1.fc13
2010-05-04 06:23:56
[SECURITY] Fedora 12 Update: openttd-1.0.1-1.fc12
2010-05-04 06:04:59
[SECURITY] Fedora 11 Update: openttd-1.0.1-1.fc11
2010-05-04 06:21:27
nessus
nessus
Fedora 13 : openttd-1.0.1-1.fc13 (2010-7895)
2010-07-01 00:00:00
Fedora 12 : openttd-1.0.1-1.fc12 (2010-7800)
2010-07-01 00:00:00
Fedora 11 : openttd-1.0.1-1.fc11 (2010-7885)
2010-07-01 00:00:00
openvas
openvas
OpenTTD Multiple Security bypass vulnerabilities
2010-05-13 00:00:00
OpenTTD Multiple Security bypass vulnerabilities
2010-05-13 00:00:00
Fedora Update for openttd FEDORA-2010-7800
2010-05-07 00:00:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7.4
Confidence
High
EPSS
0.004
Percentile
74.1%
Related for NVD:CVE-2010-0402