This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
A flaw in how OpenSSL performed Montgomery multiplications was
discovered %that could allow a local attacker to reconstruct RSA
private keys by examining another user's OpenSSL processes
Moritz Jodeit found that OpenSSL's SSL_get_shared_ciphers() function
did not correctly check the size of the buffer it was writing to. As a
result, a remote attacker could exploit this to write one NULL byte
past the end of the applications's cipher list buffer, which could
possibly lead to a denial of service or the execution of arbitrary
Updated packages have been patched to prevent these issues.
Update the affected packages.
Risk factor :
Critical / CVSS Base Score : 10.0