This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The CRAM-MD5 authentication support of the University of Washington
IMAP and POP3 servers contains a vulnerability that may allow an
attacker to bypass authentication and impersonate arbitrary users.
Only installations with CRAM-MD5 support configured are affected.
See also :
Update the affected package.
Risk factor :
High / CVSS Base Score : 7.5