CVE-2000-0159 Information

Description

HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system which can set the password field to a blank and allow an attacker to gain privileges.

Reference

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000217160216.13708.qmail@underground.org