Vulnerabilities > CVE-2001-1175 - Unspecified vulnerability in Andries Brouwer Util-Linux 2.10S/2.11D
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
vipw in the util-linux package before 2.10 causes /etc/shadow to be world-readable in some cases, which would make it easier for local users to perform brute force password guessing.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Redhat
| advisories |
|
References
- http://www.redhat.com/support/errata/RHSA-2001-095.html
- http://www.redhat.com/support/errata/RHSA-2001-095.html
- http://www.redhat.com/support/errata/RHSA-2001-132.html
- http://www.redhat.com/support/errata/RHSA-2001-132.html
- http://www.securityfocus.com/bid/3036
- http://www.securityfocus.com/bid/3036
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6851
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6851