This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
The remote SuSE 10 host is missing a security-related patch.
neon did not properly handle embedded NUL characters in X.509
certificates when comparing host names. Attackers could exploit that
to spoof SSL servers. (CVE-2009-2408)
Specially crafted XML documents that contain a large number of nested
entity references could cause neon to consume large amounts of CPU and
See also :
Apply ZYPP patch number 6549.
Risk factor :
Medium / CVSS Base Score : 6.8