This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
A vulnerability has been found and corrected in fcgi :
The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as used by
CGI::Fast, uses environment variable values from one request during
processing of a later request, which allows remote attackers to bypass
authentication via crafted HTTP headers (CVE-2011-2766).
The updated packages have been patched to correct this issue.
Update the affected perl-FCGI package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true