Scientific Linux Security Update : shadow-utils on SL4.x i386/x86_64
Low Nessus Plugin ID 60170
SynopsisThe remote Scientific Linux host is missing a security update.
DescriptionA flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. (CVE-2006-1174)
SolutionUpdate the affected shadow-utils package.