Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: SuSE Local Security Checks --> Category: infos

SUSE-SA:2006:025: cyrus-sasl-digestmd5 Vulnerability Scan


Vulnerability Scan Summary
Check for the version of the cyrus-sasl-digestmd5 package

Detailed Explanation for this Vulnerability Test

The remote host is missing the patch for the advisory SUSE-SA:2006:025 (cyrus-sasl-digestmd5).


If a server or client is using DIGEST-MD5 authentication via the cyrus-sasl
libraries it is possible to cause a denial of service attack against the other
side (client or server) by leaving out the 'realm=' header in the authentication.

This is tracked by the Mitre CVE ID CVE-2006-1721.

Solution : http://www.suse.de/security/advisories/2006_05_05.html
Threat Level: Medium

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.