|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200609-03] OpenTTD: Remote Denial of Service Vulnerability Scan
Vulnerability Scan Summary OpenTTD: Remote Denial of Service
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200609-03
(OpenTTD: Remote Denial of Service)
OpenTTD is vulnerable to a Denial of Service attack due to a flaw in
the manner the game server handles errors in command packets.
Impact
An authenticated attacker can cause a Denial of Service by sending an
invalid error number to a vulnerable OpenTTD server.
Workaround
There is no known workaround at this time.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1998
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1999
Solution:
All OpenTTD users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=games-simulation/openttd-0.4.8"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|