CVE-2010-0401

First published: Wed May 05 2010(Updated: )

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Openttd Openttd	=0.6.0-rc1
Openttd Openttd	=0.1.3
Openttd Openttd	=0.1.2
Openttd Openttd	=0.2.1
Openttd Openttd	=0.4.0.1
Openttd Openttd	=0.2.0
Openttd Openttd	=0.6.1-rc2
Openttd Openttd	=0.6.0-beta2
Openttd Openttd	=0.5.0-rc1
Openttd Openttd	=0.3.3
Openttd Openttd	=0.3.1
Openttd Openttd	=0.5.3-rc1
Openttd Openttd	=0.4.7
Openttd Openttd	=0.3.6
Openttd Openttd	=0.3.4
Openttd Openttd	=0.5.0-rc2
Openttd Openttd	=0.6.0
Openttd Openttd	=0.1.4
Openttd Openttd	=0.6.0-beta1
Openttd Openttd	=0.3.0
Openttd Openttd	<=1.0.0
Openttd Openttd	=0.5.3
Openttd Openttd	=0.5.0-rc3
Openttd Openttd	=0.5.0
Openttd Openttd	=0.5.3-rc3
Openttd Openttd	=0.4.0
Openttd Openttd	=0.5.2
Openttd Openttd	=0.6.1
Openttd Openttd	=0.6.0-beta4
Openttd Openttd	=0.5.2-rc1
Openttd Openttd	=0.6.0-beta3
Openttd Openttd	=0.6.1-rc1
Openttd Openttd	=0.4.5
Openttd Openttd	=0.5.1-rc1
Openttd Openttd	=0.4.6
Openttd Openttd	=0.6.2-rc1
Openttd Openttd	=0.5.3-rc2
Openttd Openttd	=0.3.2
Openttd Openttd	=0.7.4
Openttd Openttd	=0.1.1
Openttd Openttd	=0.5.0-rc4
Openttd Openttd	=0.4.8
Openttd Openttd	=0.3.7
Openttd Openttd	=0.5.1
Openttd Openttd	=0.5.1-rc2
Openttd Openttd	=0.5.0-rc5
Openttd Openttd	=0.3.5
Openttd Openttd	=0.3.2.1
Openttd Openttd	=0.6.0-beta5
Openttd Openttd	=0.5.1-rc3
Openttd Openttd	=0.6.2-rc2
Openttd Openttd	=0.4.8-rc1

Never miss a vulnerability like this again

Reference Links

collector/nvd-historical
collector/nvd-index
agent/severity
agent/references
agent/author
agent/weakness
agent/type
agent/description
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
agent/event
agent/tags
collector/mitre-cve
source/MITRE
vendor/openttd
canonical/openttd openttd
version/openttd openttd/0.6.0-rc1
version/openttd openttd/0.1.3
version/openttd openttd/0.1.2
version/openttd openttd/0.2.1
version/openttd openttd/0.4.0.1
version/openttd openttd/0.2.0
version/openttd openttd/0.6.1-rc2
version/openttd openttd/0.6.0-beta2
version/openttd openttd/0.5.0-rc1
version/openttd openttd/0.3.3
version/openttd openttd/0.3.1
version/openttd openttd/0.5.3-rc1
version/openttd openttd/0.4.7
version/openttd openttd/0.3.6
version/openttd openttd/0.3.4
version/openttd openttd/0.5.0-rc2
version/openttd openttd/0.6.0
version/openttd openttd/0.1.4
version/openttd openttd/0.6.0-beta1
version/openttd openttd/0.3.0
version/openttd openttd/1.0.0
version/openttd openttd/0.5.3
version/openttd openttd/0.5.0-rc3
version/openttd openttd/0.5.0
version/openttd openttd/0.5.3-rc3
version/openttd openttd/0.4.0
version/openttd openttd/0.5.2
version/openttd openttd/0.6.1
version/openttd openttd/0.6.0-beta4
version/openttd openttd/0.5.2-rc1
version/openttd openttd/0.6.0-beta3
version/openttd openttd/0.6.1-rc1
version/openttd openttd/0.4.5
version/openttd openttd/0.5.1-rc1
version/openttd openttd/0.4.6
version/openttd openttd/0.6.2-rc1
version/openttd openttd/0.5.3-rc2
version/openttd openttd/0.3.2
version/openttd openttd/0.7.4
version/openttd openttd/0.1.1
version/openttd openttd/0.5.0-rc4
version/openttd openttd/0.4.8
version/openttd openttd/0.3.7
version/openttd openttd/0.5.1
version/openttd openttd/0.5.1-rc2
version/openttd openttd/0.5.0-rc5
version/openttd openttd/0.3.5
version/openttd openttd/0.3.2.1
version/openttd openttd/0.6.0-beta5
version/openttd openttd/0.5.1-rc3
version/openttd openttd/0.6.2-rc2
version/openttd openttd/0.4.8-rc1

CVE-2010-0401

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact