CVE-2001-1175 Information

Description

vipw in the util-linux package before 2.10 causes /etc/shadow to be world-readable in some cases which would make it easier for local users to perform brute force password guessing.

Reference

http://www.redhat.com/support/errata/RHSA-2001-095.html http://www.redhat.com/support/errata/RHSA-2001-132.html http://www.securityfocus.com/bid/3036 https://exchange.xforce.ibmcloud.com/vulnerabilities/6851