This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
neon did not properly handle embedded NUL characters in X.509
certificates when comparing host names. Attackers could exploit that
to spoof SSL servers (CVE-2009-2408).
Specially crafted XML documents that contain a large number of nested
entity references could cause neon to consume large amounts of CPU and
See also :
Update the affected libneon-devel packages.
Risk factor :
Medium / CVSS Base Score : 6.8