Summary
The remote host is missing an update as announced
via advisory SSA:2009-134-01.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-134-01
Insight
New cyrus-sasl packages are available for Slackware 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue. A buffer overflow in the sasl_encode64() function could lead to a denial of service or possible execution of arbitrary code.
More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0688
Severity
Classification
-
CVE CVE-2009-0688 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities