Detections
Analytics

RHEL 2.1 : shadow-utils (RHSA-2003:058)

low Nessus Plugin ID 12366

Synopsis

The remote Red Hat host is missing a security update.

Description

Updated shadow-utils packages are now available. These updated packages correct a bug that caused the useradd tool to create mail spools with incorrect permissions.

The shadow-utils package includes programs for converting UNIX password files to the shadow password format, plus programs for managing user and group accounts. One of these programs is useradd, which is used to create or update new user information.

When creating a user account, the version of useradd included in Red Hat packages creates a mail spool file with incorrectly-set group ownership. Instead of setting the file's group ownership to the 'mail' group, it is set to the user's primary group.

On systems where other users share the same primary group, this would allow those users to be able to read and write other user mailboxes.

These errata packages contain an updated patch to useradd. Where a mail group exists, mailboxes will be created with group mail having read and write permissions. Otherwise the mailbox will be created without group read and write permissions.

All users are advised to upgrade to these updated packages and also to check the /var/spool/mail directory to ensure that mailboxes have correct permissions.

Solution

Update the affected shadow-utils package.

See Also

https://access.redhat.com/security/cve/cve-2002-1509

https://access.redhat.com/errata/RHSA-2003:058

Plugin Details

Severity: Low

ID: 12366

File Name: redhat-RHSA-2003-058.nasl

Version: 1.24

Type: local

Agent: unix

Published: 7/6/2004

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Low

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:shadow-utils, cpe:/o:redhat:enterprise_linux:2.1

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Patch Publication Date: 2/13/2003

Vulnerability Publication Date: 3/3/2003

Reference Information

CVE: CVE-2002-1509

RHSA: 2003:058