This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
StÃ©phane Bertin discovered a flaw in the pam_krb5
existing_ticket configuration option where, if enabled and using an
existing credential cache, it was possible for a local user to gain
elevated privileges by using a different, local user's credential
The updated packages have been patched to prevent this issue.
An updated package for Mandriva Linux 2009.0 is now available.
Update the affected pam_krb5 package.
Risk factor :
Medium / CVSS Base Score : 4.4
CVSS Temporal Score : 3.8
Public Exploit Available : true