FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

OpenTTD -- Buffer overflows in savegame loading

Affected packages
0.1.0 <= openttd < 1.1.3

Details

VuXML ID 78c25ed7-f3f9-11e0-8b5c-b482fe3f522d
Discovery 2011-08-08
Entry 2011-10-16

The OpenTTD Team reports:

Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors related to (1) NAME, (2) PLYR, (3) CHTS, or (4) AIPL (aka AI config) chunk loading from a savegame.

References

CVE Name CVE-2011-3342
URL http://security.openttd.org/en/CVE-2011-3342