Synopsis
The remote host is missing a vendor-supplied security patch
Description
The remote host is missing the patch for the advisory SUSE-SA:2005:013 (cyrus-sasl,cyrus-sasl2).
cyrus-sasl is a library providing authentication services.
A buffer overflow in the digestmda5 code was identified that could lead to a remote attacker executing code in the context of the service using sasl authentication.
This is tracked by the Mitre CVE ID CVE-2005-0373.
Solution
http://www.suse.de/security/advisories/2005_13_cyrus_sasl.html
Plugin Details
File Name: suse_SA_2005_013.nasl
Agent: unix
Supported Sensors: Nessus Agent, Nessus
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
Required KB Items: Host/SuSE/rpm-list