xinetd 2.1.8 and earlier runs with a default umask of 0, which could allow local users to read or modify files that are created by an application that runs under xinetd but does not set its own safe umask.
http://www.securityfocus.com/bid/2826
http://www.redhat.com/support/errata/RHSA-2001-075.html
http://www.linuxsecurity.com/advisories/other_advisory-1469.html
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-055.php3
http://www.iss.net/security_center/static/6657.php
http://www.debian.org/security/2001/dsa-063
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-024-01
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000404