This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Multiple vulnerabilities has been discovered and corrected in flite :
The play_wave_from_socket function in audio/auserver.c in Flite 1.4
allows local users to modify arbitrary files via a symlink attack on
/tmp/awb.wav. NOTE: some of these details are obtained from third
party information (CVE-2014-0027).
The updated packages have been patched to correct this issue.
Update the affected flite and / or lib64flite-devel packages.
Risk factor :
Low / CVSS Base Score : 3.3
CVSS Temporal Score : 2.9
Public Exploit Available : true