This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Multiple vulnerabilities has been found and corrected in php :
- Improved LCG entropy. (Rasmus, Samy Kamkar)
- Fixed safe_mode validation inside tempnam() when the
directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in the
session extension identified by Grzegorz Stachowiak.
Packages for 2008.0 are provided for Corporate Desktop 2008.0
The updated packages have been patched to correct these issues.
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true
Family: Mandriva Local Security Checks
Nessus Plugin ID: 45029 (mandriva_MDVSA-2010-058.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now