Vulnerabilities > Openttd > Openttd > 1.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-05-05 | CVE-2010-0402 | Code Injection vulnerability in Openttd OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted in-game command. | 6.5 |
2010-05-05 | CVE-2010-0401 | Permissions, Privileges, and Access Controls vulnerability in Openttd OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet. | 6.5 |