Mandrake Linux Security Advisory : openldap (MDKSA-2000:003)
Low Nessus Plugin ID 61801
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionOpenLDAP follows symbolic links when creating files. The default location for these files is /usr/tmp, which is a symlink to /tmp, which in turn is a world-writable directory. Local users can destroy the contents of any file on any mounted filesystem.
SolutionUpdate the affected openldap package.