BID:30525

OpenTTD Multiple Buffer Overflow Vulnerabilities

Info

OpenTTD Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	30525
Class:	Boundary Condition Error
CVE:	CVE-2008-3547 CVE-2008-3576 CVE-2008-3577
Remote:	Yes
Local:	No
Published:	Aug 01 2008 12:00AM
Updated:	Jul 06 2016 02:17PM
Credit:	OpenTTD
Vulnerable:	OpenTTD OpenTTD 0.6.1 Gentoo Linux

Not Vulnerable:	OpenTTD OpenTTD 0.6.2

Discussion

OpenTTD Multiple Buffer Overflow Vulnerabilities

OpenTTD is prone to multiple buffer-overflow vulnerabilities because it fails to adequately bounds-check user-supplied input before copying it to insufficiently sized buffers.

Successfully exploiting these issues may allow an attacker to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will likely crash the application.

These issues affect versions prior to OpenTTD 0.6.2.

Exploit / POC

OpenTTD Multiple Buffer Overflow Vulnerabilities

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

OpenTTD Multiple Buffer Overflow Vulnerabilities

Solution:
The vendor has released updates. Please see the references for more information.

References

OpenTTD Multiple Buffer Overflow Vulnerabilities

References:

OpenTTD 0.6.2 Release Notes (OpenTTD)
OpenTTD Homepage (OpenTTD)