This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.
The remote SuSE 9 host is missing a security-related patch.
pam_ldap in nss_ldap does not return an error condition when an LDAP
directory server responds with a PasswordPolicyResponse control
response, which causes the pam_authenticate function to return a
success code even if authentication has failed, as originally reported
for xscreensaver. (CVE-2006-5170)
See also :
Apply YOU patch number 11259.
Risk factor :
High / CVSS Base Score : 7.5