SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   neon Vendors:   webdav.org
neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
SecurityTracker Alert ID:  1009794
SecurityTracker URL:  http://securitytracker.com/id/1009794
CVE Reference:   CVE-2004-0179   (Links to External Site)
Updated:  Apr 26 2004
Original Entry Date:  Apr 15 2004
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 0.24.5
Description:   Some format string vulnerabilities were reported in neon. A remote WebDAV server can execute arbitrary on a connected neon client.

The vendor reported that there are format string flaws in the processing of XML/207 response messages. A remote user can create a WebDAV server and supply specially crafted data to a connected neon client to execute arbitrary code on the connected client.

The vendor credits greuff@void.at with reporting these flaws.

Impact:   A remote WebDAV server can execute arbitrary code on the connected target system with the privileges of the neon client process.
Solution:   The vendor has released a fixed version (0.24.5), available at:

http://www.webdav.org/neon/neon-0.24.5.tar.gz
http://www.webdav.org/neon/

Vendor URL:  www.webdav.org/neon/ (Links to External Site)
Cause:   Input validation error, State error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Apr 15 2004 (Red Hat Issues Fix for OpenOffice) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Red Hat has released a fix for OpenOffice for Red Hat Enterprise Linux 3.
Apr 15 2004 (Red Hat Issues Fix for Subversion) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Red Hat has released a fix for Red Hat Linux 9.
Apr 16 2004 (Red Hat Issues Fix for OpenOffice Fedora) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Fedora has released a fix.
Apr 17 2004 (Debian Issues Fix) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Debian has released a fix.
Apr 20 2004 (Mandrake Issues Fix) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Mandrake has released a fix.
Apr 30 2004 (Red Hat Issues Fix for OpenOffice on RH Linux) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Red Hat has released a fix for OpenOffice on Red Hat Linux 9.
May 10 2004 (Gentoo Issues Fix) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Gentoo has released a fix.
May 12 2004 (Gentoo Issues Fix for OpenOffice) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Gentoo has released a fix for OpenOffice.
May 18 2004 (Fedora Issues Fix) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Fedora has released a fix.
Jul 30 2004 (Mandrake Issues Fix for OpenOffice) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Mandrake has released a fix.
Sep 29 2004 (Red Hat Issues Fix for Cadaver on RH Linux) neon Format String Flaws Let Remote WebDAV Servers Execute Arbitrary Code on Connected Clients
Red Hat has issued a fix for Cadaver on Red Hat Linux 7.3 and 9.



 Source Message Contents

Subject:  CVE-2004-0179


http://www.webdav.org/neon/

 > Changes in release neon 0.24.5, 14 April 2004 (PGP signature)
 >
 >     * SECURITY (CVE CAN-2004-0179): Fix format string vulnerabilities in XML/207
 >       response handling, reported by greuff@void.at.


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC