This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
The SuSE Security Team discovered a vulnerability in sudo that can be
exploited to obtain root privilege because sudo is installed setuid
root. An attacker could trick sudo to log failed sudo calls executing
the sendmail (or equivalent mailer) program with root privileges and
an environment that is not completely clean. This problem has been
fixed upstream by the author in sudo 1.6.4 and it is highly
recommended that all users upgrade regardless of what mailer you are
Update the affected sudo package.
Risk factor :
High / CVSS Base Score : 7.2