This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
A vulnerability was discovered in the CRAM-MD5 authentication in
UW-IMAP where, on the fourth failed authentication attempt, a user
would be able to access the IMAP server regardless. This problem
exists only if you are using CRAM-MD5 authentication and have an
/etc/cram-md5.pwd file. This is not the default setup.
The updated packages have been patched to prevent these problems.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5