Lucene search
HistoryMar 03, 2003 - 5:00 a.m.
CVE-2002-1509
CVSS2
3.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
24.8%
A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new user’s group (mode 660), which allows other users in the same group to read or modify the new user’s incoming email.
Affected configurations
Node
redhatlinuxMatch7.2
ORredhatlinuxMatch7.2ia64
ORredhatlinuxMatch7.3
ORredhatlinuxMatch8.0
Related
securityvulns
securityvulns
[RHSA-2003:057-06] Updated shadow-utils packages fix exposure
2003-02-21 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : shadow-utils (MDKSA-2003:026)
2004-07-31 00:00:00
RHEL 2.1 : shadow-utils (RHSA-2003:058)
2004-07-06 00:00:00
cvelist
cvelist
CVE-2002-1509
2004-09-01 04:00:00
redhat
redhat
(RHSA-2003:058) shadow-utils security update
2003-02-25 00:00:00
cve
cve
CVE-2002-1509
2004-09-01 04:00:00
CVSS2
3.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
24.8%
Related for NVD:CVE-2002-1509