CVE-2005-3065
MultiTheftAuto 0.5 patch 1 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted command 40 that causes a -1 length to be used and triggers an out-of-bounds read.
Date published : 2005-09-27
http://lists.grok.org.uk/pipermail/full-disclosure/2005-September/037384.html