Mandriva Linux Security Advisory : perl-MDK-Common (MDVSA-2009:072)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandriva Linux host is missing a security update.

Description :

Some vulnerabilities were discovered and corrected in
perl-MDK-Common :

The functions used to write strings into shell like configuration
files by Mandriva tools were not taking care of some special
characters. This could lead to some bugs (like wireless keys
containing certain characters not working), and privilege escalation.
This update fixes that issue by ensuring proper protection of strings.

The updated packages have been patched to correct these issues.

Solution :

Update the affected perl-MDK-Common package.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 36429 (mandriva_MDVSA-2009-072.nasl)

Bugtraq ID:

CVE ID: CVE-2009-0912

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now