CVE-2001-0195

Name of the Vulnerable Software and Affected Versions: sash versions prior to 3.4-4

Description: The issue is related to the improper cloning of /etc/shadow, making it world-readable. This could allow local users to gain privileges via password cracking.

Recommendations: For versions prior to 3.4-4, update to version 3.4-4 or later to resolve the issue. As a temporary workaround, consider restricting access to the /etc/shadow file to minimize the risk of exploitation.