World-writable Spool Directory in mgetty: Local Privilege Escalation Vulnerability

CVE-2002-1392 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

faxspool in mgetty before 1.1.29 uses a world-writable spool directory for outgoing faxes, which allows local users to modify fax transmission privileges.

Learn more about our User Device Pen Test.