This script is Copyright (C) 2006-2010 Tenable Network Security, Inc.
The remote host is missing a vendor-supplied security patch
The remote host is missing the patch for the advisory SUSE-SA:2006:025 (cyrus-sasl-digestmd5).
If a server or client is using DIGEST-MD5 authentication via the cyrus-sasl
libraries it is possible to cause a denial of service attack against the other
side (client or server) by leaving out the 'realm=' header in the authentication.
This is tracked by the Mitre CVE ID CVE-2006-1721.
Risk factor :
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now