Neon < 0.23.8 Status Response Control Character Inclusion Vulnerability (deprecated)

Medium Nessus Network Monitor Plugin ID 1778

Synopsis

The remote host is using software based on a vulnerable version of the Neon Library, an open-source HTTP and WebDAV client library.

Description

The remote host is using software based on a vulnerable version of the Neon Library, an open-source HTTP and WebDAV client library. Applications that use this version of the Neon library may disclose sensitive information to an attacker.

Solution

Upgrade to Neon library 0.23.8 or higher.

Plugin Details

Severity: Medium

ID: 1778

Family: Web Clients

Published: 2004/08/20

Modified: 2015/06/01

Dependencies: 1735, 8314

Risk Information

Risk Factor: Medium

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Reference Information

BID: 7029