This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
cyrus-imapd recognized commands before switching to an encrypted
channel via STARTTLS. Attackers could potentially exploit that to
inject plain text commands (CVE-2011-1926).
See also :
Update the affected cyrus-imapd packages.
Risk factor :
Medium / CVSS Base Score : 5.1