This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
Tarhon-Onu Victor found a problem in /bin/login's PAM implementation.
It stored the value of a static pwent buffer across PAM calls, and
when used with some PAM modules in non-default configurations (ie.
using pam_limits), it would overwrite the buffer and cause the user to
get the credentials of another user. Thanks to Olaf Kirch for
providing the patch to fix the problem.
Update the affected util-linux package.
Risk factor :
High / CVSS Base Score : 7.2