This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
A security vulnerability has been identified and fixed in login
application from shadow-utils, which could allow local users in the
utmp group to overwrite arbitrary files via a symlink attack on a
temporary file referenced in a line (aka ut_line) field in a utmp
The updated packages have been patched to prevent this.
Note: Mandriva Linux is using login application from util-linux-ng by
default, and therefore is not affected by this issue on default
Update the affected shadow-utils package.
Risk factor :
High / CVSS Base Score : 7.2