The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=529306 http://www.vuxml.org/freebsd/80f13884-4d4c-11de-8811-0030843d3802.html

The following package is affected: slim CVE-2009-1756 SLiM Simple Login Manager 1.3.0 places the X authority magic cookie (mcookie) on the command line when invoking xauth from (1) app.cpp and (2) switchuser.cpp, which allows local users to access the X session by listing the process and its arguments.