ID CVE-2007-0157
Summary Array index error in the uri_lookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service (crash) via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error that generates a negative index.
References
Vulnerable Configurations
  • cpe:2.3:a:neon:neon:0.26.0
    cpe:2.3:a:neon:neon:0.26.0
  • cpe:2.3:a:neon:neon:0.26.1
    cpe:2.3:a:neon:neon:0.26.1
  • cpe:2.3:a:neon:neon:0.26.2
    cpe:2.3:a:neon:neon:0.26.2
CVSS
Base: 7.8 (as of 09-01-2007 - 16:38)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
nessus via4
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2007-013.NASL
    description An array index error in the URI parser in neon 0.26.0 to 0.26.2 could possibly allow remote malicious servers to cause a crash via a URI with non-ASCII characters. This vulnerability may only exist on 64bit systems. Updated packages are patched to address this issue.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 24629
    published 2007-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24629
    title Mandrake Linux Security Advisory : libneon0.26 (MDKSA-2007:013)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_NEON-2476.NASL
    description Fix for incorrect array index handling with non-ASCII characters in the URI parser. (CVE-2007-0157)
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27361
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27361
    title openSUSE 10 Security Update : neon (neon-2476)
refmap via4
bid 22035
confirm
mandriva MDKSA-2007:013
mlist
  • [cadaver] 20070123 release 0.22.5
  • [neon] 20070107 invalid chars cause sigserv in neon
osvdb 39247
secunia
  • 23751
  • 23763
  • 23984
suse SUSE-SR:2007:002
vupen
  • ADV-2007-0172
  • ADV-2007-0362
statements via4
contributor Mark J Cox
lastmodified 2007-01-15
organization Red Hat
statement Not vulnerable. This issue does not affect the older versions of neon as shipped with Red Hat Enterprise Linux 2.1, 3, and 4. This issue also does not affect the older versions of neon included in the cadaver package.
Last major update 07-03-2011 - 21:48
Published 09-01-2007 - 16:28
Back to Top