CVE-2010-2534

Name of the Vulnerable Software and Affected Versions OpenTTD versions prior to 1.0.3

Description The issue is related to the NetworkSyncCommandQueue function in network/network command.cpp, which does not properly clear a pointer in a linked list. This allows remote attackers to cause a denial of service, resulting in an infinite loop and CPU consumption, via a crafted request related to the client command queue.

Recommendations For versions prior to 1.0.3, update to version 1.0.3 or later to resolve the issue.