Mandrake Linux Security Advisory : pine (MDKSA-2001:047-1)

Low Nessus Plugin ID 13866


The remote Mandrake Linux host is missing a security update.


Versions of the Pine email client prior to 4.33 have various temporary file creation problems, as does the pico editor. These issues allow any user with local system access to cause any files owned by any other user, including root, to potentially be overwritten if the conditions were right.

Update :

The packages for 7.1 and Corporate Server did not properly update the menu entries. These updated packages update the menu entries.


Update the affected pine package.

See Also

Plugin Details

Severity: Low

ID: 13866

File Name: mandrake_MDKSA-2001-047.nasl

Version: $Revision: 1.13 $

Type: local

Published: 2004/07/31

Modified: 2013/05/31

Dependencies: 12634

Risk Information

Risk Factor: Low


Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:pine, cpe:/o:mandrakesoft:mandrake_linux:7.1, cpe:/o:mandrakesoft:mandrake_linux:7.2, cpe:/o:mandrakesoft:mandrake_linux:8.0

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2001/05/07

Reference Information

CVE: CVE-2001-0736

MDKSA: 2001:047, 2001:047-1