Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Gentoo Linux Security Advisory GLSA 200509-03 - Alexey Dobriyan discovered several format string vulnerabilities in OpenTTD. Versions less than 0.4.0.1-r1 are affected.