Mandriva Linux Security Advisory 2010-081 – A race condition was found in the way mod_auth_shadow used an external helper binary to validate user credentials (username / password pairs). A remote attacker could use this flaw to bypass intended access restrictions, resulting in ability to view and potentially alter resources, which should be otherwise protected by authentication. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/88663/MDVSA-2010-081.txt
Source: https://packetstormsecurity.com/files/88663/Mandriva-Linux-Security-Advisory-2010-081.html