CVE-2006-1174 is a vulnerability in Debian Shadow
Published on May 28, 2006
useradd in shadow-utils before 4.0.3, and possibly other versions before 4.0.8, does not provide a required argument to the open function when creating a new user mailbox, which causes the mailbox to be created with unpredictable permissions and possibly allows attackers to read or modify the mailbox.
Products Associated with CVE-2006-1174
Want to know whenever a new CVE is published for Debian Shadow? stack.watch will email you.
Exploit Probability
EPSS
0.10%
Percentile
26.65%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.