CVE-2009-2474
published 2009-08-21CVE-2009-2474: neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an…
PriorityP425medium5.8CVSS 2.0
AVNACMAuNCPIPAN
EPSS
1.38%
68.7th percentile
neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | < 10.6.5 | 10.6.5 |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | litmus | < litmus 0.13-1 (bookworm) | litmus 0.13-1 (bookworm) |
| debian | neon27 | < litmus 0.13-1 (bookworm) | litmus 0.13-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| litmuschaos | litmus | >= 0 < 0.13-1 | 0.13-1 |
| litmuschaos | litmus | >= 0 < 0.13-1 | 0.13-1 |
| litmuschaos | litmus | >= 0 < 0.13-1 | 0.13-1 |
| litmuschaos | litmus | >= 0 < 0.13-1 | 0.13-1 |
| webdav | neon | < 0.28.6 | 0.28.6 |
CVSS provenance
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
osv5.9MEDIUM
vendor_debian5.9MEDIUM
vendor_redhat5.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x9rv-vww8-vmj9: neon before 0
ghsa_unreviewed·2022-05-02·CVSS 5.9
CVE-2009-2474 [MEDIUM] CWE-326 GHSA-x9rv-vww8-vmj9: neon before 0
neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
OSV
CVE-2009-2474: neon before 0
osv·2009-08-21·CVSS 5.9
CVE-2009-2474 [MEDIUM] CVE-2009-2474: neon before 0
neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Ubuntu
neon vulnerabilities
vendor_ubuntu·2009-09-21
CVE-2008-3746 neon vulnerabilities
Title: neon vulnerabilities
Summary: neon vulnerabilities
Joe Orton discovered that neon did not correctly handle SSL certificates
with zero bytes in the Common Name. A remote attacker could exploit this
to perform a machine-in-the-middle attack to view sensitive information or
alter encrypted communications.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
neon: Improper verification of x509v3 certificate with NULL (zero) byte in certain fields
vendor_redhat·2009-08-18·CVSS 5.9
CVE-2009-2474 [MEDIUM] neon: Improper verification of x509v3 certificate with NULL (zero) byte in certain fields
neon: Improper verification of x509v3 certificate with NULL (zero) byte in certain fields
neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Debian
CVE-2009-2474: litmus - neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '...
vendor_debian·2009·CVSS 5.9
CVE-2009-2474 [MEDIUM] CVE-2009-2474: litmus - neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '...
neon before 0.28.6, when OpenSSL or GnuTLS is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Scope: local
bookworm: resolved (fixed in 0.13-1)
bullseye: resolved (fixed in 0.13-1)
forky: resolved (fixed in 0.13-1)
sid: resolved (fixed in 0.13-1)
trixie: resolved (fixed in 0.13-1)
No detection rules found.
No public exploits indexed.
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlhttp://lists.manyfish.co.uk/pipermail/neon/2009-August/001044.htmlhttp://lists.manyfish.co.uk/pipermail/neon/2009-August/001046.htmlhttp://secunia.com/advisories/36371http://secunia.com/advisories/36799http://support.apple.com/kb/HT4435http://www.mandriva.com/security/advisories?name=MDVSA-2009:221http://www.securityfocus.com/bid/36079http://www.ubuntu.com/usn/usn-835-1http://www.vupen.com/english/advisories/2009/2341https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11721https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00924.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00945.htmlhttp://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlhttp://lists.manyfish.co.uk/pipermail/neon/2009-August/001044.htmlhttp://lists.manyfish.co.uk/pipermail/neon/2009-August/001046.htmlhttp://secunia.com/advisories/36371http://secunia.com/advisories/36799http://support.apple.com/kb/HT4435http://www.mandriva.com/security/advisories?name=MDVSA-2009:221http://www.securityfocus.com/bid/36079http://www.ubuntu.com/usn/usn-835-1http://www.vupen.com/english/advisories/2009/2341https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11721https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00924.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00945.html
2009-08-21
Published