CVE-2002-0762

Name of the Vulnerable Software and Affected Versions shadow package in SuSE version 8.0

Description The issue allows local users to destroy the /etc/passwd and /etc/shadow files or assign extra group privileges to some users by changing filesize limits before calling programs that modify the files.

Recommendations For SuSE 8.0, consider restricting access to the shadow package until a fix is available, and avoid modifying the /etc/passwd and /etc/shadow files directly to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.