CVE-2010-4168

Published: Nov 17, 2010Modified: Apr 29, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow (1) remote attackers to cause a denial of service (invalid write and daemon crash) by abruptly disconnecting during transmission of the map from the server, related to network/network_server.cpp; (2) remote attackers to cause a denial of service (invalid read and daemon crash) by abruptly disconnecting, related to network/network_server.cpp; and (3) remote servers to cause a denial of service (invalid read and application crash) by forcing a disconnection during the join process, related to network/network.cpp.

Affected (3)

Products: Openttd: Openttd · Fedoraproject: Fedora

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Openttd Openttd	From 1.0.0 to 1.0.5

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 13
Fedoraproject Fedora	Version 14

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (22)

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052187.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052193.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://marc.info/?l=oss-security&m=128975491407670&w=2

Source: secalert@redhat.com

Mailing List

http://marc.info/?l=oss-security&m=128984298802678&w=2

Source: secalert@redhat.com

Mailing List

http://secunia.com/advisories/42578

Source: secalert@redhat.com

Broken Link

http://security.openttd.org/en/CVE-2010-4168

Source: secalert@redhat.com

PatchVendor Advisory

http://security.openttd.org/en/patch/28.patch

Source: secalert@redhat.com

Patch

http://vcs.openttd.org/svn/changeset/21182

Source: secalert@redhat.com

Broken Link

http://www.securityfocus.com/bid/44844

Source: secalert@redhat.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.vupen.com/english/advisories/2010/2985

Source: secalert@redhat.com

Broken LinkVendor Advisory

http://www.vupen.com/english/advisories/2010/3199

Source: secalert@redhat.com

Broken Link

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052187.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052193.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://marc.info/?l=oss-security&m=128975491407670&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

http://marc.info/?l=oss-security&m=128984298802678&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

http://secunia.com/advisories/42578

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://security.openttd.org/en/CVE-2010-4168

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://security.openttd.org/en/patch/28.patch

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://vcs.openttd.org/svn/changeset/21182

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securityfocus.com/bid/44844

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.vupen.com/english/advisories/2010/2985

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkVendor Advisory

http://www.vupen.com/english/advisories/2010/3199

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.