This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
Updated perl-Email-Address package fixes security vulnerability :
The parse function in Email::Address module before 1.905 for Perl uses
an inefficient regular expression, which allows remote attackers to
cause a denial of service (CPU consumption) via an empty quoted string
in an RFC 2822 address (CVE-2014-0477).
The Email::Address module before 1.904 for Perl uses an inefficient
regular expression, which allows remote attackers to cause a denial of
service (CPU consumption) via vectors related to backtracking into the
See also :
Update the affected perl-Email-Address package.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : false