CVE-2002-1509 — LOW severity vulnerability (A patch for shadow-utils 20000902 causes the useradd command)
A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new user's group (mode 660), which allows other users in the same group to read or modify the new user's incoming email.
| CVE ID | CVE-2002-1509 |
|---|---|
| Severity | LOW |
| CVSS score | 3.6 |
| CVSS vector | AV:L/AC:L/Au:N/C:P/I:P/A:N |
| CWE | NVD-CWE-Other |
| Status | Modified |
| Published | 2003-03-03 |
| Last modified | 2026-04-16 |
| Description | A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new user's group (mode 660), which allows other users in the same group to read or modify the new user's incoming email. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →