Unrated severityNVD Advisory· Published Jan 9, 2007· Updated Jun 16, 2026
CVE-2007-0157
CVE-2007-0157
Description
Array index error in the uri_lookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service (crash) via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error that generates a negative index.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5Patches
Vulnerability mechanics
References
14- bugs.debian.org/cgi-bin/bugreport.cgi/neon26_0.26.2-3_to_mdx1.diffnvd
- bugs.debian.org/cgi-bin/bugreport.cginvd
- mailman.webdav.org/pipermail/cadaver/2007-January/001015.htmlnvd
- mailman.webdav.org/pipermail/neon/2007-January/002362.htmlnvd
- osvdb.org/39247nvd
- secunia.com/advisories/23751nvd
- secunia.com/advisories/23763nvd
- secunia.com/advisories/23984nvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2007_02_sr.htmlnvd
- www.securityfocus.com/bid/22035nvd
- www.vupen.com/english/advisories/2007/0172nvd
- www.vupen.com/english/advisories/2007/0362nvd
- www.webdav.org/cadaver/nvd
News mentions
0No linked articles in our index yet.