CVE Vulnerabilities

CVE-2002-1509

Published: Mar 03, 2003 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.6 LOW
AV:L/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new users group (mode 660), which allows other users in the same group to read or modify the new users incoming email.

Affected Software

Name Vendor Start Version End Version
Linux Redhat 7.2 7.2
Linux Redhat 8.0 8.0
Linux Redhat 7.3 7.3
Linux Redhat 7.2 7.2

References