|
Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:013: cyrus-sasl,cyrus-sasl2 Vulnerability Scan
Vulnerability Scan Summary Check for the version of the cyrus-sasl,cyrus-sasl2 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:013 (cyrus-sasl,cyrus-sasl2).
cyrus-sasl is a library providing authentication services.
A buffer overflow in the digestmda5 code was identified that could lead
to a remote attacker executing code in the context of the service using
sasl authentication.
This is tracked by the Mitre CVE ID CVE-2005-0373.
Solution : http://www.suse.de/security/advisories/2005_13_cyrus_sasl.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|