neon vulnerabilities

ID USN-835-1
Type ubuntu
Reporter Ubuntu
Modified 2009-09-21T00:00:00


Joe Orton discovered that neon did not correctly handle SSL certificates
with zero bytes in the Common Name. A remote attacker could exploit this
to perform a man in the middle attack to view sensitive information or
alter encrypted communications.