CVE-2010-0401

Name: CVE-2010-0401
Creator: NVD / NIST
Published: 2010-05-05T13:22:54.927+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.20%

Last modified Jun 16, 2026

CVE-2010-0401 is a vulnerability of currently unknown severity. OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.. EPSS estimates a 1.20% chance of exploitation in the next 30 days.

Description

OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or cause a denial of service (daemon crash) by sending a company password packet.

Metrics

EPSS Probability

1.20%

64.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-264

Affected Software

Vendor	Product	Versions	Update
Openttd	Openttd	<= 1.0.0	—
Openttd	Openttd	0.1.1	—
Openttd	Openttd	0.1.2	—
Openttd	Openttd	0.1.3	—
Openttd	Openttd	0.1.4	—
Openttd	Openttd	0.2.0	—
Openttd	Openttd	0.2.1	—
Openttd	Openttd	0.3.0	—
Openttd	Openttd	0.3.1	—
Openttd	Openttd	0.3.2	—
Openttd	Openttd	0.3.2.1	—
Openttd	Openttd	0.3.3	—
Openttd	Openttd	0.3.4	—
Openttd	Openttd	0.3.5	—
Openttd	Openttd	0.3.6	—
Openttd	Openttd	0.3.7	—
Openttd	Openttd	0.4.0	—
Openttd	Openttd	0.4.0.1	—
Openttd	Openttd	0.4.5	—
Openttd	Openttd	0.4.6	—
Openttd	Openttd	0.4.7	—
Openttd	Openttd	0.4.8	—
Openttd	Openttd	0.5.0	—
Openttd	Openttd	0.5.1	—
Openttd	Openttd	0.5.2	—
Openttd	Openttd	0.5.3	—
Openttd	Openttd	0.6.0	—
Openttd	Openttd	0.6.1	—
Openttd	Openttd	0.6.2	Rc1
Openttd	Openttd	0.7.4	—

References

http://bugs.openttd.org/task/3754
http://secunia.com/advisories/39669Vendor Advisory
http://security.openttd.org/en/CVE-2010-0401Vendor Advisory
http://bugs.openttd.org/task/3754
http://secunia.com/advisories/39669Vendor Advisory
http://security.openttd.org/en/CVE-2010-0401Vendor Advisory

Timeline

Published: May 5, 2010
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2010-0401?

How severe is CVE-2010-0401?

Severity scoring for CVE-2010-0401 is pending analysis. The EPSS model estimates a 1.20% probability of exploitation in the next 30 days.

How do I fix CVE-2010-0401?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-0401?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST