Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-0402

OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command.

Related bugs and status

CVE-2010-0402 (Candidate) is related to these bugs:

Bug #576396: Please update to 1.0.3

Summary				In	Importance	Status
	576396	Please update to 1.0.3		openttd (Ubuntu)	Medium	Fix Released

Bug #578152: [add to repository] OpenTTD

Summary				In	Importance	Status
	578152	[add to repository] OpenTTD		GetDeb Software Portal	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://security.opentt...
SECUNIA: 39669