CVE-2011-3341
openttd - several
EPSS 4.4%
Description
Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted CMD_INSERT_ORDER command.
How to fix CVE-2011-3341
To remediate CVE-2011-3341, upgrade the affected package to a fixed version below.
- Debian/openttd—upgrade to 1.1.3-1 or later
- Debian/openttd—upgrade to 0.6.2-1+lenny4 or later
Is CVE-2011-3341 being exploited?
Low — EPSS is 4.4%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 1.1.3-1
- from 0, < 0.6.2-1+lenny4