| VID |
14067 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
There are users whose UID is '0' except root in the host system. root account's UID is '0' in UNIX or Linux system. if there are users who have '0' UID, they will have the same permission with root. Therefore all users must not have '0' UID except root.
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Check users who have '0' UID as the following
cat /etc/passwd
and then change the users' UID as the following
# usermod -u 'new UID' 'user's login ID' |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
