Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2013-6411
HistoryDec 14, 2013 - 5:21 p.m.

CVE-2013-6411

2013-12-1417:21:47
CWE-119
redhat
web.nvd.nist.gov
30
cve-2013-6411
handlecrashedaircraft
openttd
denial of service
out-of-bounds read
crash
aircraft_cmd.cpp
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.046

Percentile

92.7%

JSON

The HandleCrashedAircraft function in aircraft_cmd.cpp in OpenTTD 0.3.6 through 1.3.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) by crashing an aircraft outside of the map.

Affected configurations

Nvd
Node
openttdopenttdMatch0.3.6
OR
openttdopenttdMatch0.4.0
OR
openttdopenttdMatch0.4.0.1
OR
openttdopenttdMatch0.4.5
OR
openttdopenttdMatch0.4.6
OR
openttdopenttdMatch0.4.7
OR
openttdopenttdMatch0.4.8
OR
openttdopenttdMatch0.5.0
OR
openttdopenttdMatch0.5.1
OR
openttdopenttdMatch0.5.2
OR
openttdopenttdMatch0.5.3
OR
openttdopenttdMatch0.6.0
OR
openttdopenttdMatch0.6.1
OR
openttdopenttdMatch0.6.2
OR
openttdopenttdMatch0.6.3
OR
openttdopenttdMatch0.7.0
OR
openttdopenttdMatch0.7.1
OR
openttdopenttdMatch0.7.2
OR
openttdopenttdMatch0.7.3
OR
openttdopenttdMatch0.7.4
OR
openttdopenttdMatch0.7.5
OR
openttdopenttdMatch1.0.0
OR
openttdopenttdMatch1.0.0beta1
OR
openttdopenttdMatch1.0.0beta2
OR
openttdopenttdMatch1.0.0beta3
OR
openttdopenttdMatch1.0.0beta4
OR
openttdopenttdMatch1.0.0rc1
OR
openttdopenttdMatch1.0.0rc2
OR
openttdopenttdMatch1.0.0rc3
OR
openttdopenttdMatch1.0.1
OR
openttdopenttdMatch1.0.1rc1
OR
openttdopenttdMatch1.0.1rc2
OR
openttdopenttdMatch1.0.2
OR
openttdopenttdMatch1.0.2rc1
OR
openttdopenttdMatch1.0.3
OR
openttdopenttdMatch1.0.3rc1
OR
openttdopenttdMatch1.0.4
OR
openttdopenttdMatch1.0.4rc1
OR
openttdopenttdMatch1.0.5
OR
openttdopenttdMatch1.0.5rc1
OR
openttdopenttdMatch1.0.5rc2
OR
openttdopenttdMatch1.1.0
OR
openttdopenttdMatch1.1.1
OR
openttdopenttdMatch1.1.2
OR
openttdopenttdMatch1.1.3
OR
openttdopenttdMatch1.1.4
OR
openttdopenttdMatch1.1.5
OR
openttdopenttdMatch1.2.0
OR
openttdopenttdMatch1.2.1
OR
openttdopenttdMatch1.2.2
OR
openttdopenttdMatch1.2.3
OR
openttdopenttdMatch1.3.1
OR
openttdopenttdMatch1.3.2
VendorProductVersionCPE
openttdopenttd0.3.6cpe:2.3:a:openttd:openttd:0.3.6:*:*:*:*:*:*:*
openttdopenttd0.4.0cpe:2.3:a:openttd:openttd:0.4.0:*:*:*:*:*:*:*
openttdopenttd0.4.0.1cpe:2.3:a:openttd:openttd:0.4.0.1:*:*:*:*:*:*:*
openttdopenttd0.4.5cpe:2.3:a:openttd:openttd:0.4.5:*:*:*:*:*:*:*
openttdopenttd0.4.6cpe:2.3:a:openttd:openttd:0.4.6:*:*:*:*:*:*:*
openttdopenttd0.4.7cpe:2.3:a:openttd:openttd:0.4.7:*:*:*:*:*:*:*
openttdopenttd0.4.8cpe:2.3:a:openttd:openttd:0.4.8:*:*:*:*:*:*:*
openttdopenttd0.5.0cpe:2.3:a:openttd:openttd:0.5.0:*:*:*:*:*:*:*
openttdopenttd0.5.1cpe:2.3:a:openttd:openttd:0.5.1:*:*:*:*:*:*:*
openttdopenttd0.5.2cpe:2.3:a:openttd:openttd:0.5.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 531

Related

openvas 8
ubuntucve 1
cvelist 1
nessus 6
nvd 1
mageia 1
fedora 3
freebsd 1
gentoo 1
prion 1
debiancve 1
osv 1
openvas
openvas
Fedora Update for openttd FEDORA-2013-23378
2013-12-30 00:00:00
Fedora Update for openttd FEDORA-2013-23339
2014-02-03 00:00:00
Fedora Update for openttd FEDORA-2013-23378
2013-12-30 00:00:00
ubuntucve
ubuntucve
CVE-2013-6411
2013-12-14 00:00:00
cvelist
cvelist
CVE-2013-6411
2013-12-14 17:00:00
nessus
nessus
Fedora 20 : openttd-1.3.3-1.fc20 (2013-23339)
2013-12-24 00:00:00
FreeBSD : OpenTTD -- Denial of service using forcefully crashed aircrafts (d2073237-5b52-11e3-80f7-c86000cbc6ec)
2013-12-03 00:00:00
GLSA-201407-01 : OpenTTD: Denial of Service
2014-07-08 00:00:00
nvd
nvd
CVE-2013-6411
2013-12-14 17:21:47
mageia
mageia
Updated openttd package fixes security vulnerability
2013-12-07 01:42:45
fedora
fedora
[SECURITY] Fedora 20 Update: openttd-1.3.3-1.fc20
2013-12-24 03:36:37
[SECURITY] Fedora 19 Update: openttd-1.3.3-1.fc19
2013-12-24 03:37:28
[SECURITY] Fedora 18 Update: openttd-1.3.3-1.fc18
2013-12-24 03:40:54
freebsd
freebsd
OpenTTD -- Denial of service using forcefully crashed aircrafts
2013-11-28 00:00:00
gentoo
gentoo
OpenTTD: Denial of service
2014-07-07 00:00:00
prion
prion
Out-of-bounds
2013-12-14 17:21:00
debiancve
debiancve
CVE-2013-6411
2013-12-14 17:21:47
osv
osv
openttd-1.6.1-1.1 on GA media
2024-06-15 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.046

Percentile

92.7%

JSON
Related for CVE-2013-6411
openvas8ubuntucve1cvelist1nessus6nvd1mageia1fedora3freebsd1gentoo1prion1debiancve1osv1