Mandriva Linux Security Advisory : virtualbox (MDVSA-2009:011)
Medium Nessus Plugin ID 37915
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability have been discovered and corrected in VirtualBox, affecting versions prior to 2.0.6, which allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-qateam-ipc/lock temporary file (CVE-2008-5256).
The updated packages have been patched to prevent this.
SolutionUpdate the affected packages.