What is the severity of CVE-2012-0048?

CVE-2012-0048 has a medium severity rating due to its potential to cause a denial of service.

How does CVE-2012-0048 affect OpenTTD servers?

CVE-2012-0048 allows attackers to disrupt gameplay by pausing the game through a slow read attack during the authorization and map download phases.

What versions of OpenTTD are affected by CVE-2012-0048?

CVE-2012-0048 affects OpenTTD versions from 0.3.5 to 1.1.4.

How do I fix CVE-2012-0048?

To fix CVE-2012-0048, upgrade your OpenTTD installation to version 1.1.5 or later.

Can CVE-2012-0048 impact multiplayer gameplay?

Yes, CVE-2012-0048 can significantly impact multiplayer gameplay by causing denial of service through server interruptions.

Vulnerability/
CVE-2012-0048

medium

4.3

CWE

399

25/8/2012

27/8/2012

CVE-2012-0048

First published: Sat Aug 25 2012(Updated: )

OpenTTD 0.3.5 through 1.1.4 allows remote attackers to cause a denial of service (game pause) by connecting to the server and not finishing the (1) authorization phase or (2) map download, aka a "slow read" attack.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Openr Opentmpfiles	=0.3.5
Openr Opentmpfiles	=0.3.6
Openr Opentmpfiles	=0.3.7
Openr Opentmpfiles	=0.4.0
Openr Opentmpfiles	=0.4.0.1
Openr Opentmpfiles	=0.4.5
Openr Opentmpfiles	=0.4.6
Openr Opentmpfiles	=0.4.7
Openr Opentmpfiles	=0.4.8
Openr Opentmpfiles	=0.4.8-rc1
Openr Opentmpfiles	=0.4.8-rc2
Openr Opentmpfiles	=0.5.0
Openr Opentmpfiles	=0.5.0-rc1
Openr Opentmpfiles	=0.5.0-rc2
Openr Opentmpfiles	=0.5.0-rc3
Openr Opentmpfiles	=0.5.0-rc4
Openr Opentmpfiles	=0.5.0-rc5
Openr Opentmpfiles	=0.5.1
Openr Opentmpfiles	=0.5.1-rc1
Openr Opentmpfiles	=0.5.1-rc2
Openr Opentmpfiles	=0.5.1-rc3
Openr Opentmpfiles	=0.5.2
Openr Opentmpfiles	=0.5.2-rc1
Openr Opentmpfiles	=0.5.3
Openr Opentmpfiles	=0.5.3-rc1
Openr Opentmpfiles	=0.5.3-rc2
Openr Opentmpfiles	=0.5.3-rc3
Openr Opentmpfiles	=0.6.0
Openr Opentmpfiles	=0.6.0-beta1
Openr Opentmpfiles	=0.6.0-beta2
Openr Opentmpfiles	=0.6.0-beta3
Openr Opentmpfiles	=0.6.0-beta4
Openr Opentmpfiles	=0.6.0-beta5
Openr Opentmpfiles	=0.6.0-rc1
Openr Opentmpfiles	=0.6.1
Openr Opentmpfiles	=0.6.1-rc1
Openr Opentmpfiles	=0.6.1-rc2
Openr Opentmpfiles	=0.6.2
Openr Opentmpfiles	=0.6.2-rc1
Openr Opentmpfiles	=0.6.2-rc2
Openr Opentmpfiles	=0.6.2-rc1
Openr Opentmpfiles	=0.6.2-rc2
Openr Opentmpfiles	=0.6.3
Openr Opentmpfiles	=0.6.3-rc1
Openr Opentmpfiles	=0.7.0
Openr Opentmpfiles	=0.7.0-beta1
Openr Opentmpfiles	=0.7.0-beta2
Openr Opentmpfiles	=0.7.0-rc1
Openr Opentmpfiles	=0.7.0-rc2
Openr Opentmpfiles	=0.7.1
Openr Opentmpfiles	=0.7.1-rc1
Openr Opentmpfiles	=0.7.1-rc2
Openr Opentmpfiles	=0.7.1-rc3
Openr Opentmpfiles	=0.7.2
Openr Opentmpfiles	=0.7.2-rc1
Openr Opentmpfiles	=0.7.2-rc2
Openr Opentmpfiles	=0.7.3
Openr Opentmpfiles	=0.7.3-rc1
Openr Opentmpfiles	=0.7.3-rc2
Openr Opentmpfiles	=0.7.4
Openr Opentmpfiles	=0.7.4-rc1
Openr Opentmpfiles	=0.7.5
Openr Opentmpfiles	=0.7.5-rc1
Openr Opentmpfiles	=1.0.0
Openr Opentmpfiles	=1.0.0-beta1
Openr Opentmpfiles	=1.0.0-beta2
Openr Opentmpfiles	=1.0.0-beta3
Openr Opentmpfiles	=1.0.0-beta4
Openr Opentmpfiles	=1.0.0-rc1
Openr Opentmpfiles	=1.0.0-rc2
Openr Opentmpfiles	=1.0.0-rc3
Openr Opentmpfiles	=1.0.1
Openr Opentmpfiles	=1.0.1-rc1
Openr Opentmpfiles	=1.0.1-rc2
Openr Opentmpfiles	=1.0.2
Openr Opentmpfiles	=1.0.2-rc1
Openr Opentmpfiles	=1.0.3
Openr Opentmpfiles	=1.0.3-rc1
Openr Opentmpfiles	=1.0.4
Openr Opentmpfiles	=1.0.4-rc1
Openr Opentmpfiles	=1.0.5
Openr Opentmpfiles	=1.0.5-rc1
Openr Opentmpfiles	=1.0.5-rc2
Openr Opentmpfiles	=1.1.3
Openr Opentmpfiles	=1.1.4

Remedy

http://vcs.openttd.org/svn/changeset/23764

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0048?
CVE-2012-0048 has a medium severity rating due to its potential to cause a denial of service.
How does CVE-2012-0048 affect OpenTTD servers?
CVE-2012-0048 allows attackers to disrupt gameplay by pausing the game through a slow read attack during the authorization and map download phases.
What versions of OpenTTD are affected by CVE-2012-0048?
CVE-2012-0048 affects OpenTTD versions from 0.3.5 to 1.1.4.
How do I fix CVE-2012-0048?
To fix CVE-2012-0048, upgrade your OpenTTD installation to version 1.1.5 or later.
Can CVE-2012-0048 impact multiplayer gameplay?
Yes, CVE-2012-0048 can significantly impact multiplayer gameplay by causing denial of service through server interruptions.

agent/references
agent/type
agent/first-publish-date
agent/last-modified-date
agent/remedy
agent/severity
agent/description
agent/weakness
agent/author
agent/softwarecombine
agent/tags
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
vendor/openttd
canonical/openr opentmpfiles
version/openr opentmpfiles/0.3.5
version/openr opentmpfiles/0.3.6
version/openr opentmpfiles/0.3.7
version/openr opentmpfiles/0.4.0
version/openr opentmpfiles/0.4.0.1
version/openr opentmpfiles/0.4.5
version/openr opentmpfiles/0.4.6
version/openr opentmpfiles/0.4.7
version/openr opentmpfiles/0.4.8
version/openr opentmpfiles/0.4.8-rc1
version/openr opentmpfiles/0.4.8-rc2
version/openr opentmpfiles/0.5.0
version/openr opentmpfiles/0.5.0-rc1
version/openr opentmpfiles/0.5.0-rc2
version/openr opentmpfiles/0.5.0-rc3
version/openr opentmpfiles/0.5.0-rc4
version/openr opentmpfiles/0.5.0-rc5
version/openr opentmpfiles/0.5.1
version/openr opentmpfiles/0.5.1-rc1
version/openr opentmpfiles/0.5.1-rc2
version/openr opentmpfiles/0.5.1-rc3
version/openr opentmpfiles/0.5.2
version/openr opentmpfiles/0.5.2-rc1
version/openr opentmpfiles/0.5.3
version/openr opentmpfiles/0.5.3-rc1
version/openr opentmpfiles/0.5.3-rc2
version/openr opentmpfiles/0.5.3-rc3
version/openr opentmpfiles/0.6.0
version/openr opentmpfiles/0.6.0-beta1
version/openr opentmpfiles/0.6.0-beta2
version/openr opentmpfiles/0.6.0-beta3
version/openr opentmpfiles/0.6.0-beta4
version/openr opentmpfiles/0.6.0-beta5
version/openr opentmpfiles/0.6.0-rc1
version/openr opentmpfiles/0.6.1
version/openr opentmpfiles/0.6.1-rc1
version/openr opentmpfiles/0.6.1-rc2
version/openr opentmpfiles/0.6.2
version/openr opentmpfiles/0.6.2-rc1
version/openr opentmpfiles/0.6.2-rc2
version/openr opentmpfiles/0.6.3
version/openr opentmpfiles/0.6.3-rc1
version/openr opentmpfiles/0.7.0
version/openr opentmpfiles/0.7.0-beta1
version/openr opentmpfiles/0.7.0-beta2
version/openr opentmpfiles/0.7.0-rc1
version/openr opentmpfiles/0.7.0-rc2
version/openr opentmpfiles/0.7.1
version/openr opentmpfiles/0.7.1-rc1
version/openr opentmpfiles/0.7.1-rc2
version/openr opentmpfiles/0.7.1-rc3
version/openr opentmpfiles/0.7.2
version/openr opentmpfiles/0.7.2-rc1
version/openr opentmpfiles/0.7.2-rc2
version/openr opentmpfiles/0.7.3
version/openr opentmpfiles/0.7.3-rc1
version/openr opentmpfiles/0.7.3-rc2
version/openr opentmpfiles/0.7.4
version/openr opentmpfiles/0.7.4-rc1
version/openr opentmpfiles/0.7.5
version/openr opentmpfiles/0.7.5-rc1
version/openr opentmpfiles/1.0.0
version/openr opentmpfiles/1.0.0-beta1
version/openr opentmpfiles/1.0.0-beta2
version/openr opentmpfiles/1.0.0-beta3
version/openr opentmpfiles/1.0.0-beta4
version/openr opentmpfiles/1.0.0-rc1
version/openr opentmpfiles/1.0.0-rc2
version/openr opentmpfiles/1.0.0-rc3
version/openr opentmpfiles/1.0.1
version/openr opentmpfiles/1.0.1-rc1
version/openr opentmpfiles/1.0.1-rc2
version/openr opentmpfiles/1.0.2
version/openr opentmpfiles/1.0.2-rc1
version/openr opentmpfiles/1.0.3
version/openr opentmpfiles/1.0.3-rc1
version/openr opentmpfiles/1.0.4
version/openr opentmpfiles/1.0.4-rc1
version/openr opentmpfiles/1.0.5
version/openr opentmpfiles/1.0.5-rc1
version/openr opentmpfiles/1.0.5-rc2
version/openr opentmpfiles/1.1.3
version/openr opentmpfiles/1.1.4