CVE-2006-1174 : useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to

useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the mailbox.

Published 2006-05-28 23:02:00

Updated 2020-08-11 17:09:48

Source CERT/CC

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2006-1174

Probability of exploitation activity in the next 30 days: 0.15%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 51 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2006-1174

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.7	LOW	AV:L/AC:H/Au:N/C:P/I:P/A:P	1.9	6.4	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2006-1174

CWE-264

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2006-1174

Red Hat 2007-09-06

Red Hat is aware of this issue and is tracking it via the following bugs: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=193053 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=229194 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/ The risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.

References for CVE-2006-1174

http://www.vupen.com/english/advisories/2007/3229

Webmail: access your OVH emails on ovhcloud.com | OVHcloud
Vendor Advisory

CVEs referencing this url
http://www.gentoo.org/security/en/glsa/glsa-200606-02.xml
http://www.redhat.com/support/errata/RHSA-2007-0276.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:090
https://issues.rpath.com/browse/RPL-1357
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10807
http://www.redhat.com/support/errata/RHSA-2007-0431.html
ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc

CVEs referencing this url
http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html

[Full-Disclosure] Mailing List Charter

CVEs referencing this url
http://cvs.pld.org.pl/shadow/NEWS?rev=1.109
http://www.securityfocus.com/bid/18111

Patch
http://www.kb.cert.org/vuls/id/312692

US Government Resource
http://www.vupen.com/english/advisories/2006/2006

Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/26958
http://www.securitytracker.com/id?1018221
http://support.avaya.com/elmodocs2/security/ASA-2007-249.htm
http://www.securityfocus.com/archive/1/468336/100/0/threaded

Products affected by CVE-2006-1174