Lucene search
K

5 matches found

CVE
CVE
added 2009/08/21 5:0 p.m.115 views

CVE-2009-2473

Technical details for CVE-2009-2473 are not publicly available in the provided documents. Monitor for updates from official advisories.

4.3CVSS6.5AI score0.08437EPSS
CVE
CVE
added 2004/05/20 4:0 a.m.112 views

CVE-2004-0398

CVE-2004-0398 concerns the neon library (libneon) up to version 0.24.5 and cadaver prior to 0.22, where a heap-based overflow occurs in the date parsing function ne_rfc1036_parse. This vulnerability can allow a remote WebDAV server to cause arbitrary code execution on the client. The connected do...

7.5CVSS7.6AI score0.05015EPSS
CVE
CVE
added 2009/08/21 5:0 p.m.108 views

CVE-2009-2474

CVE-2009-2474 affects neon prior to 0.28.6 when using OpenSSL or GnuTLS. The root cause is improper handling of a '\0' character in the domain name in the X.509 certificate CN field, enabling MITM spoofing of SSL servers via a certificate issued by a legitimate CA. Impact per the entry is partial...

5.8CVSS6AI score0.0138EPSS
CVE
CVE
added 2008/08/27 3:0 p.m.70 views

CVE-2008-3746

CVE-2008-3746 - neon vulnerability details (supported by connected docs) Affected software: neon 0.28.0 through 0.28.2. The issue is described across multiple advisories as a denial of service caused by a NULL pointer dereference in the digest authentication code, related to Digest authentication...

4.3CVSS6.2AI score0.02266EPSS
CVE
CVE
added 2004/04/16 4:0 a.m.66 views

CVE-2004-0179

CVE-2004-0179 involves multiple format-string vulnerabilities in neon 0.24.4 and earlier, and in other products that use neon (Cadaver, Subversion, OpenOffice). The underlying issue is format-string bugs in neon’s error reporting code, which could allow a remote attacker—via a malicious WebDAV se...

6.8CVSS7.1AI score0.11056EPSS