Detections
Analytics

CVE-2008-3547

high

Description

Buffer overflow in the server in OpenTTD 0.6.1 and earlier allows remote authenticated users to cause a denial of service (persistent game disruption) or possibly execute arbitrary code via vectors involving many long names for "companies and clients."

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/49221

http://sourceforge.net/project/shownotes.php?release_id=617243

http://security.gentoo.org/glsa/glsa-200903-09.xml

http://secunia.com/advisories/34161

http://marc.info/?l=oss-security&m=121814230706576&w=2

http://marc.info/?l=oss-security&m=121797672406282&w=2

http://marc.info/?l=oss-security&m=121790659421159&w=2

http://marc.info/?l=oss-security&m=121787604812284&w=2

http://bugs.gentoo.org/show_bug.cgi?id=233929

http://bugs.debian.org/493714

Details

Source: Mitre, NVD

Published: 2009-03-10

Updated: 2017-08-08

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High