This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
Mark Dowd, of McAffee Avert Labs, discovered a potential remotely
exploitable off-by-one flaw in Apache's mod_rewrite ldap scheme
In order for this to be exploitable, a number of conditions need to be
met including a) running a vulnerable version of Apache (1.3.28+,
2.0.46+, or 2.2.0+), b) enabling mod_rewrite, c) having a rewrite rule
that the remote user can influence the beginning of, and d) a
particular stack frame layout.
By default, RewriteEngine is not enabled in Mandriva Linux Apache
packages, and no RewriteRules are defined.
Updated packages have been patched to correct this issue.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.6
Public Exploit Available : true