Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-0401

Опубликовано: 05 мая 2010
Источник: nvd
CVSS2: 6.5
EPSS Низкий

Описание

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:openttd:openttd:*:*:*:*:*:*:*:*
Версия до 1.0.0 (включая)
cpe:2.3:a:openttd:openttd:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.1.4:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.5:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.6:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.3.7:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.5:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.6:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.7:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.8:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.4.8:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:rc3:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:rc4:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.0:rc5:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.1:rc2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.1:rc3:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.2:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.3:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.3:rc2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.5.3:rc3:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:beta1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:beta2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:beta3:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:beta4:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:beta5:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.1:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.1:rc2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.2:rc1:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.6.2:rc2:*:*:*:*:*:*
cpe:2.3:a:openttd:openttd:0.7.4:*:*:*:*:*:*:*

EPSS

Процентиль: 56%
0.00334
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2010-0401

ubuntu
больше 15 лет назад

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

debian логотип

CVE-2010-0401

debian
больше 15 лет назад

OpenTTD before 1.0.1 accepts a company password for authentication in ...

github логотип

GHSA-cg34-q4xv-v6xv

github
больше 3 лет назад

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

EPSS

Процентиль: 56%
0.00334
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264