CVE-2006-1174

shadow-utils <4.0.3-4.0.8 - Info Disclosure

Title source: llm

Description

useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the mailbox.

References (26)

[Various Sources] http://cvs.pld.org.pl/shadow/NEWS?rev=1.109

[Mailing List] http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html

[Patch, Vendor Advisory] http://secunia.com/advisories/20370

[Vendor Advisory] http://secunia.com/advisories/20506

[Vendor Advisory] http://secunia.com/advisories/25098

[Vendor Advisory] http://secunia.com/advisories/25267

[Vendor Advisory] http://secunia.com/advisories/25629

[Vendor Advisory] http://secunia.com/advisories/25894

[Vendor Advisory] http://secunia.com/advisories/25896

[Vendor Advisory] http://secunia.com/advisories/26909

[Vendor Advisory] http://secunia.com/advisories/27706

[Third Party Advisory] http://www.gentoo.org/security/en/glsa/glsa-200606-02.xml

[US Government Resource] http://www.kb.cert.org/vuls/id/312692

[Patch] http://www.securityfocus.com/bid/18111

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/2006

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/3229

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/26958

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2007-0276.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2007-0431.html

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2006:090

... and 6 more

Scores

EPSS 0.0010

EPSS Percentile 26.6%

Classification

CWE

CWE-264

Status draft

Affected Products (8)

debian/shadow < 4.0.7

debian/shadow

debian/shadow

debian/shadow

debian/shadow

debian/shadow

debian/shadow

debian/shadow

Timeline

Published May 28, 2006

Tracked Since Feb 18, 2026