CVE-2012-3436

Published: Oct 9, 2012Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

OpenTTD 0.6.0 through 1.2.1 does not properly validate requests to clear a water tile, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a certain sequence of steps related to "the water/coast aspect of tiles which also have railtracks on one half."

Affected (38)

Products: Openttd: Openttd

1 product

Configuration A

38 vulnerable

Vulnerable Software	Affected Versions
Openttd Openttd	Version 0.6.0
Openttd Openttd	Version 0.6.1
Openttd Openttd	Version 0.6.2
Openttd Openttd	Version 0.6.3
Openttd Openttd	Version 0.7.0
Openttd Openttd	Version 0.7.1
Openttd Openttd	Version 0.7.2
Openttd Openttd	Version 0.7.3
Openttd Openttd	Version 0.7.4
Openttd Openttd	Version 0.7.5
Openttd Openttd	Version 1.0.0
Openttd Openttd	Version 1.0.0 beta1
Openttd Openttd	Version 1.0.0 beta2
Openttd Openttd	Version 1.0.0 beta3
Openttd Openttd	Version 1.0.0 beta4
Openttd Openttd	Version 1.0.0 rc1
Openttd Openttd	Version 1.0.0 rc2
Openttd Openttd	Version 1.0.0 rc3
Openttd Openttd	Version 1.0.1
Openttd Openttd	Version 1.0.1 rc1
Openttd Openttd	Version 1.0.1 rc2
Openttd Openttd	Version 1.0.2
Openttd Openttd	Version 1.0.2 rc1
Openttd Openttd	Version 1.0.3
Openttd Openttd	Version 1.0.3 rc1
Openttd Openttd	Version 1.0.4
Openttd Openttd	Version 1.0.4 rc1
Openttd Openttd	Version 1.0.5
Openttd Openttd	Version 1.0.5 rc1
Openttd Openttd	Version 1.0.5 rc2
Openttd Openttd	Version 1.1.0
Openttd Openttd	Version 1.1.1
Openttd Openttd	Version 1.1.2
Openttd Openttd	Version 1.1.3
Openttd Openttd	Version 1.1.4
Openttd Openttd	Version 1.1.5
Openttd Openttd	Version 1.2.0
Openttd Openttd	Version 1.2.1

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (22)

http://bugs.openttd.org/task/5254

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2012-08/msg00043.html

Source: secalert@redhat.com

http://secunia.com/advisories/50042

Source: secalert@redhat.com

Vendor Advisory

http://security.openttd.org/en/CVE-2012-3436

Source: secalert@redhat.com

http://vcs.openttd.org/svn/changeset/24439

Source: secalert@redhat.com

http://vcs.openttd.org/svn/changeset/24449

Source: secalert@redhat.com

Exploit

http://www.openwall.com/lists/oss-security/2012/07/27/5

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/07/28/7

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/07/31/5

Source: secalert@redhat.com

http://www.securityfocus.com/bid/54720

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/77266

Source: secalert@redhat.com

http://bugs.openttd.org/task/5254

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2012-08/msg00043.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/50042

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://security.openttd.org/en/CVE-2012-3436

Source: af854a3a-2127-422b-91ae-364da2661108

http://vcs.openttd.org/svn/changeset/24439

Source: af854a3a-2127-422b-91ae-364da2661108

http://vcs.openttd.org/svn/changeset/24449

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.openwall.com/lists/oss-security/2012/07/27/5

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2012/07/28/7

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2012/07/31/5

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/54720

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/77266

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.