4 matches found
CVE-2007-0157
Array index error in the urilookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service crash via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error tha...
openSUSE 10 Security Update : neon (neon-2476)
Fix for incorrect array index handling with non-ASCII characters in the URI parser. CVE-2007-0157 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update neon-2476. The text description of this plugin...
Mandrake Linux Security Advisory : libneon0.26 (MDKSA-2007:013)
An array index error in the URI parser in neon 0.26.0 to 0.26.2 could possibly allow remote malicious servers to cause a crash via a URI with non-ASCII characters. This vulnerability may only exist on 64bit systems. Updated packages are patched to address this issue. %NASLMINLEVEL 70300 C Tenable...
CVE-2007-0157
CVE-2007-0157 affects neon 0.26.0–0.26.2, with a root cause of an array index/buffer under-read in the URI parser when handling non-ASCII characters, potentially on 64-bit platforms. This could allow a remote attacker via a URI to cause a crash (denial of service). Public advisories from openSUSE...