CVE-2012-0048

{"id": "CVE-2012-0048", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-08-25T10:29:49.223", "references": [{"url": "http://bugs.openttd.org/task/4955", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/50137", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://security.openttd.org/en/CVE-2012-0049", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://vcs.openttd.org/svn/changeset/23764", "tags": ["Exploit", "Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2012/dsa-2524", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/01/07/2", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/01/13/8", "source": "secalert@redhat.com"}, {"url": "http://www.tt-forums.net/viewtopic.php?f=33&t=58073&hilit=pause#p989303", "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "OpenTTD 0.3.5 through 1.1.4 allows remote attackers to cause a denial of service (game pause) by connecting to the server and not finishing the (1) authorization phase or (2) map download, aka a \"slow read\" attack."}, {"lang": "es", "value": "OpenTTD 0.3.5 a trav\u00e9s de 1.1.4 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (pausa el juego) mediante la conexi\u00f3n con el servidor y no termina la fase de autorizaci\u00f3n (1) o (2) mapa download, tambi\u00e9n conocido como una \"lectura lenta\" ataque."}], "lastModified": "2012-08-27T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openttd:openttd:0.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE12C455-5CA0-4581-A3F3-CC8867CCEEE3"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DC5E23E-3A14-49B4-A676-AAA96F25D01D"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.3.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8520357A-27AF-4F48-9095-773F75AAC408"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F65EA852-3C46-47D6-8D6B-DC3546165CC1"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4441B6D-1A48-4DD4-AAAB-FC3B5F00DE4A"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "985D96E7-0BAE-46DF-A1E2-BD4585C6CABF"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73062670-5CB9-4AB8-B45D-21E0D557FD49"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "876A0BCB-F792-4A21-85AB-5D7D63C3E987"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97BFB677-F29E-451E-855A-452F8AE0A9D6"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99308463-E1A6-4018-819E-29043BFE8886"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.4.8:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9E8C9AB-C303-4FB0-AD1D-C7EE4E93E347"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF5AEFDA-322E-49CD-AE94-82020B9B7AE2"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AF50B50-ED50-4BCD-8BAE-9161911A0FCF"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3485EF5-F3DF-4622-92D9-B092F46D5AFE"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12EB77E6-94D0-4980-B392-59ACABEDB8D9"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3051AB9F-5C64-4D95-805F-8575B5BD39D0"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.0:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "494DD878-5854-49DC-A0E1-2904D70582EB"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFD07BE5-47E4-47E6-B6A2-CEC2BCC3E383"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A5AA729-0198-4644-9810-E501C3C47EE0"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D5EC680-4686-4C04-957E-B597A1563F1B"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.1:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2C02877-6FE8-4C98-9AB6-5E4D1AC49FFF"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89325227-4E0A-49FA-83C1-D0D5E2CEF45D"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.2:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21763CB0-1FFA-4FF4-AA6F-47614E8BEEB5"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A151DBA9-3A94-431F-BC22-C86E4268263B"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7246859E-A6CF-4617-A37A-BF17849D43F2"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85FA63BC-2292-49F8-A0E1-34C8497236C4"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.5.3:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78365F07-CF44-48FD-B048-2F510D147D0A"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CBAD231-4365-4A5F-9FD8-1EE13F7FC8A1"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B052159B-4CFF-47DE-A1B7-35C467AD73BD"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDF5228B-B99A-4E4E-A66F-59275A36B28E"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E5F1FE7-ADCB-42AD-AB99-0F17AD8E2FE3"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD6E4B8D-6C12-4053-A8D2-F64F92AF733A"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:beta5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B9BDCD3-85B9-4C17-B625-FC7F62450FB4"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8648A48E-BCF9-4B34-B1FF-16B780C2797D"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B0C66D6-F933-43B1-8BC0-72625E70442C"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72070978-F3B9-46D6-A3FD-0932D751AD86"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.1:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D6483EA-FC98-4367-A34B-795F858815E6"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E775B6E0-8887-4BB8-AB39-EDD2FAC7A61E"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.2:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAE2A501-3F40-4BFD-B600-AD122BB8EFD4"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.2:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D49CDF39-F0F2-4B48-87FC-4F984D439497"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.2-rc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B47CA7A-CE9F-416B-98FA-361B21EFBA5E"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.2-rc2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C997394-8E69-41C9-93D3-D670C8344450"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "325AB3F6-AB2C-4340-A566-816CB65134F0"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.6.3:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D694BCA6-9FF4-4447-85F8-99E7F05C8509"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A9AACD8-B19A-4466-B68D-FAA074240F38"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BE4AC57-8B55-42D9-969E-6201339941BD"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FF99FCC-D8B8-4D83-AF51-DC98E1B99FED"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23706F5C-601D-4502-A23B-B92C3A1EC575"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2830F3D8-A8C1-4296-A734-063A003B6DEA"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F975E7D2-864D-4DD7-8564-1B00F42110D1"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.1:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48B7FC7C-5F22-47B3-9892-3750947D673D"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.1:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAD5F10E-9AC3-4A34-882A-21D2EBF0B2AA"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.1:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8911F113-1519-481A-A2B2-0EE15B1B482A"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC474337-934C-40F6-B6D8-0DA6C0874067"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.2:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B9881F6-F1ED-4E2E-8816-0FAF3FF1BFBA"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.2:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7139F5C-24BC-470C-880B-7D3B7FB378A8"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94B07B0C-31AF-46C3-BB4A-4DC8632E9780"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.3:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFC40FC9-B80F-4203-9357-D6D736C2F870"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.3:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B40E53AA-7327-46D0-A1D9-ED680D1F7DD4"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E1E187C-6F26-4604-9720-0C516E8BAF9E"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.4:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAB61223-CC9F-44A4-96A9-09CCE32B85F2"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18264F19-D58E-46C7-AA06-B47EFF15E165"}, {"criteria": "cpe:2.3:a:openttd:openttd:0.7.5:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14A1DC8C-B476-49E2-8FE7-2FFA5CA28267"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B98521C-E198-4B1C-9E12-D38E919ECEE6"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B784070-8D6E-4E90-9ECB-5501B70DD8E9"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C72B46F-72AC-4E11-B8F6-81E59B5083F4"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:beta3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF964E94-DD96-4ED5-B703-56146510F1C1"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:beta4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0B42597-ECA1-439C-9FE6-35E6066098F0"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "756D4F4A-7B5B-46FF-8AA8-B3E39F9822A9"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E98D59D3-C5CF-4568-B0DB-339F56901E35"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.0:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5BCF1D4-EBE5-40FD-99BF-9AF222F60662"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D3D74EC-A83E-4BE2-BA20-28F67A2A21DF"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.1:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49FD4CD9-E154-40DB-83EF-5178B883BEE3"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.1:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "641A4BFB-434B-437B-8040-6522A111EA5C"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "794D67C0-9B24-42C9-B4E4-C6267902B229"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.2:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1288AE8-47EA-4821-8A47-DF3E08F47644"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F26F21B-D1D3-407B-95C2-58EAB997D392"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.3:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEECF013-7EDF-431D-94CF-E64DAF741101"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B30380F-BB95-4FCB-860E-8C86ABA75BFA"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.4:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF913C00-C0DB-4BDC-A109-A5FDAD646365"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CAD2DE8F-82AD-4C3E-B1EB-BA02777B5645"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.5:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED3EBB64-EAAB-40D1-99D9-DE3268E92C13"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.0.5:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7B31694-52D7-4972-AAB2-E24394E7D240"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F78D5875-0D99-45F9-8362-976833A6B377"}, {"criteria": "cpe:2.3:a:openttd:openttd:1.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1668EC0-2454-4552-AEF6-083EAC62A871"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}