CVE-2008-3746

Name of the Vulnerable Software and Affected Versions neon versions 0.28.0 through 0.28.2

Description The issue allows remote servers to cause a denial of service, resulting in a NULL pointer dereference and crash. This is related to Digest authentication, specifically the Digest domain parameter support, and the parse domain function.

Recommendations For versions 0.28.0 through 0.28.2, consider disabling Digest authentication as a temporary workaround until a patch is available. Restrict access to the parse domain function to minimize the risk of exploitation.