This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
A vulnerability has been found and corrected in pulseaudio :
Tavis Ormandy and Julien Tinnes of the Google Security Team discovered
that pulseaudio, when installed setuid root, does not drop privileges
before re-executing itself to achieve immediate bindings. This can be
exploited by a user who has write access to any directory on the file
system containing /usr/bin to gain local root access. The user needs
to exploit a race condition related to creating a hard link
This update provides fixes for this vulnerability.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.2
Public Exploit Available : true