CVE-2011-3342

Description

Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors related to (1) NAME, (2) PLYR, (3) CHTS, or (4) AIPL (aka AI config) chunk loading from a savegame.

How to fix CVE-2011-3342

To remediate CVE-2011-3342, upgrade the affected package to a fixed version below.

• Debian/openttd—upgrade to 1.1.3-1 or later

Is CVE-2011-3342 being exploited?

Moderate — EPSS is 6.2%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.1.3-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-3342