This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.
The remote SuSE 10 host is missing a security-related patch.
pam_ldap in nss_ldap does not return an error condition when an LDAP
directory server responds with a PasswordPolicyResponse control
response, which causes the pam_authenticate function to return a
success code even if authentication has failed, as originally reported
for xscreensaver. (CVE-2006-5170)
See also :
Apply ZYPP patch number 2196.
Risk factor :
High / CVSS Base Score : 7.5