MDKSA-2006:090 : shadow-utils
Low Nessus Plugin ID 21601
SynopsisThe remote Mandrake host is missing one or more security-related patches.
DescriptionA potential security problem was found in the useradd tool when it creates a new user's mailbox due to a missing argument to the open() call, resulting in the first permissions of the file being some random garbage found on the stack, which could possibly be held open for reading or writing before the proper fchmod() call is executed.
Packages have been patched to correct this issue.
SolutionUpdate the affected package(s).