CVE-2008-3577
Published Aug 10, 2008
Last updated 7 years ago
Overview
- Description
- Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openttd:openttd:0.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "499EFCAE-9309-4C26-A846-10396CBC628D"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6908E44D-3553-430D-B870-266971DC0D17"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DEBDEF33-48E4-42F4-A725-838DA9191334"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "422B0D3E-503C-4CA6-83B9-4FC58BA898C6"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "46557BD6-66A0-4892-9468-687A4B63F5B9"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A186C5E-ACAA-47C8-9FA0-133E9D7F2900"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "24094775-BAF9-4C2E-8C38-86916E22B5A8"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7CF73FA-09F6-4CE5-932E-BA6B43D66F1B"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "77E87583-5769-4114-94F7-043897DA0FC6"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "718E8C39-A59C-4576-B00D-31A8F0C1762C"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83B1A7D7-D920-41F3-8DE9-D39007DDDEFD"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "327B826F-0F4E-420D-8C93-4551A4B9F190"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE12C455-5CA0-4581-A3F3-CC8867CCEEE3"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DC5E23E-3A14-49B4-A676-AAA96F25D01D"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F65EA852-3C46-47D6-8D6B-DC3546165CC1"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4441B6D-1A48-4DD4-AAAB-FC3B5F00DE4A"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "985D96E7-0BAE-46DF-A1E2-BD4585C6CABF"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "73062670-5CB9-4AB8-B45D-21E0D557FD49"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "876A0BCB-F792-4A21-85AB-5D7D63C3E987"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97BFB677-F29E-451E-855A-452F8AE0A9D6"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "99308463-E1A6-4018-819E-29043BFE8886"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C9E8C9AB-C303-4FB0-AD1D-C7EE4E93E347"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DF5AEFDA-322E-49CD-AE94-82020B9B7AE2"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AF50B50-ED50-4BCD-8BAE-9161911A0FCF"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E3485EF5-F3DF-4622-92D9-B092F46D5AFE"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12EB77E6-94D0-4980-B392-59ACABEDB8D9"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3051AB9F-5C64-4D95-805F-8575B5BD39D0"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "494DD878-5854-49DC-A0E1-2904D70582EB"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BFD07BE5-47E4-47E6-B6A2-CEC2BCC3E383"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A5AA729-0198-4644-9810-E501C3C47EE0"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D5EC680-4686-4C04-957E-B597A1563F1B"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F2C02877-6FE8-4C98-9AB6-5E4D1AC49FFF"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89325227-4E0A-49FA-83C1-D0D5E2CEF45D"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.2:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "21763CB0-1FFA-4FF4-AA6F-47614E8BEEB5"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A151DBA9-3A94-431F-BC22-C86E4268263B"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7246859E-A6CF-4617-A37A-BF17849D43F2"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85FA63BC-2292-49F8-A0E1-34C8497236C4"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78365F07-CF44-48FD-B048-2F510D147D0A"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2CBAD231-4365-4A5F-9FD8-1EE13F7FC8A1"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B052159B-4CFF-47DE-A1B7-35C467AD73BD"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BDF5228B-B99A-4E4E-A66F-59275A36B28E"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E5F1FE7-ADCB-42AD-AB99-0F17AD8E2FE3"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD6E4B8D-6C12-4053-A8D2-F64F92AF733A"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B9BDCD3-85B9-4C17-B625-FC7F62450FB4"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8648A48E-BCF9-4B34-B1FF-16B780C2797D"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3B0C66D6-F933-43B1-8BC0-72625E70442C"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "72070978-F3B9-46D6-A3FD-0932D751AD86"
},
{
"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:rc2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D6483EA-FC98-4367-A34B-795F858815E6"
}
],
"operator": "OR"
}
]
}
]