Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webdav neon vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-3746
neon 0.28.0 up to and including 0.28.2 allows remote servers to cause a denial of service (NULL pointer dereference and crash) via vectors related to Digest authentication, Digest domain parameter support, and the parse_domain function.
Webdav Neon 0.28.1
Webdav Neon 0.28.2
Webdav Neon 0.28.0
668
VMScore
CVE-2004-0398
Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and previous versions, as used by cadaver prior to 0.22, allows remote WebDAV servers to execute arbitrary code on the client.
Webdav Cadaver
Webdav Neon
Debian Debian Linux 3.0
435
VMScore
CVE-2009-2473
neon prior to 0.28.6, when expat is used, does not properly detect recursion during entity expansion, which allows context-dependent malicious users to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity ref...
Webdav Neon 0.28.6
1 EDB exploit
685
VMScore
CVE-2004-0179
Multiple format string vulnerabilities in (1) neon 0.24.4 and previous versions, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
Webdav Neon
Debian Debian Linux 3.0
1 EDB exploit
516
VMScore
CVE-2009-2474
neon prior to 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a cra...
Webdav Neon
Apple Mac Os X
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.04
Fedoraproject Fedora 10
Fedoraproject Fedora 11
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started