ID de Prueba:	1.3.6.1.4.1.25623.1.0.800184
Categoría:	Denial of Service
Título:	OpenTTD Multiple use-after-free Denial of Service vulnerability
Resumen:	OpenTTD is prone to multiple denial of service vulnerability.
Descripción:	Summary: OpenTTD is prone to multiple denial of service vulnerability. Vulnerability Insight: The flaw is due to a use-after-free error, when a client disconnects without sending the 'quit' or 'client error' message. This could cause a vulnerable server to read from or write to freed memory leading to a denial of service or it can also lead to arbitrary code execution. Vulnerability Impact: Successful exploitation will allow remote attackers to deny service to legitimate users or arbitrary code execution. Affected Software/OS: OpenTTD version before 1.0.5 Solution: Upgrade to the latest version of OpenTTD 1.0.5 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4168 42578 http://secunia.com/advisories/42578 44844 http://www.securityfocus.com/bid/44844 ADV-2010-2985 http://www.vupen.com/english/advisories/2010/2985 ADV-2010-3199 http://www.vupen.com/english/advisories/2010/3199 FEDORA-2010-18571 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052187.html FEDORA-2010-18572 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052193.html [oss-security] 20101114 CVE request for OpenTTD http://marc.info/?l=oss-security&m=128975491407670&w=2 [oss-security] 20101115 Re: CVE request for OpenTTD http://marc.info/?l=oss-security&m=128984298802678&w=2 http://security.openttd.org/en/CVE-2010-4168 http://security.openttd.org/en/patch/28.patch http://vcs.openttd.org/svn/changeset/21182
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.