CVE-2002-1509

Description

A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new users group (mode 660), which allows other users in the same group to read or modify the new users incoming email.

Risk Information

Base Score

7.1

MODERATE

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS Score

Exploitation Probability

0.075

Associated Vulnerability

No records found

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234