Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1509

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2002-1509
Last Modified 10 Sep 2008 03:14:48
Published 03 Mar 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1509

Summary

A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new user's group (mode 660), which allows other users in the same group to read or modify the new user's incoming email.

Vulnerable Systems

Operating System

  • Redhat Linux 7.2

  • Redhat Linux 7.3

  • Redhat Linux 8.0


References

CONFIRM - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=75418

REDHAT - RHSA-2003:058

REDHAT - RHSA-2003:057

MANDRAKE - MDKSA-2003:026


Last Updated: 27 May 2016 10:37:22