VDB
CVE-2012-3436
CVE-2012-3436
PUBLISHED
Reported by redhat · Published October 9, 2012
OpenTTD 0.6.0 through 1.2.1 does not properly validate requests to clear a water tile, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a certain sequence of steps related to "the water/coast aspect of tiles which also have railtracks on one half."
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Timeline
- Oct 9, 2012 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jun 27, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 50042 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- [oss-security] 20120728 Re: CVE request for OpenTTD mailing-listx_refsource_MLIST
- openSUSE-SU-2012:1063 vendor-advisoryx_refsource_SUSE
- 54720 vdb-entryx_refsource_BID
- [oss-security] 20120731 Re: CVE request for OpenTTD mailing-listx_refsource_MLIST
- openttd-water-dos(77266) vdb-entryx_refsource_XF
- x_refsource_CONFIRM
- x_refsource_CONFIRM
- [oss-security] 20120727 CVE request for OpenTTD mailing-listx_refsource_MLIST
- x_refsource_CONFIRM