Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2010-4168

Published: 17/11/2010 Updated: 02/02/2024
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Openttd

Vulnerability Summary

Multiple use-after-free vulnerabilities in OpenTTD 1.0.x prior to 1.0.5 allow (1) remote malicious users to cause a denial of service (invalid write and daemon crash) by abruptly disconnecting during transmission of the map from the server, related to network/network_server.cpp; (2) remote malicious users to cause a denial of service (invalid read and daemon crash) by abruptly disconnecting, related to network/network_server.cpp; and (3) remote servers to cause a denial of service (invalid read and application crash) by forcing a disconnection during the join process, related to network/network.cpp.

Vulnerable Product Search on Vulmon Subscribe to Product

openttd openttd

fedoraproject fedora 13

fedoraproject fedora 14

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2010-4168
Debian Bug report logs - #603752 CVE-2010-4168 Package: openttd; Maintainer for openttd is Matthijs Kooijman <matthijs@stdinnl>; Source for openttd is src:openttd (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Tue, 16 Nov 2010 22:39:02 UTC Severity: grave Tags: security Fixed in versi ...

References

CWE-416http://security.openttd.org/en/patch/28.patchhttp://marc.info/?l=oss-security&m=128975491407670&w=2http://marc.info/?l=oss-security&m=128984298802678&w=2http://vcs.openttd.org/svn/changeset/21182http://security.openttd.org/en/CVE-2010-4168http://www.vupen.com/english/advisories/2010/2985http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052193.htmlhttp://secunia.com/advisories/42578http://www.securityfocus.com/bid/44844http://www.vupen.com/english/advisories/2010/3199http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052187.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=603752https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook