Apple Computer Inc. Not Affected

Updated:  April 03, 2003

Status

Not Affected

Vendor Statement

mkpasswd is not shipped with Mac OS X.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Foundry Networks Inc. Not Affected

Updated:  April 04, 2003

Status

Not Affected

Vendor Statement

Foundry Networks do not use the mkpasswd utility in any of its products. Foundry products are not vulnerable.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Fujitsu Not Affected

Updated:  April 10, 2003

Status

Not Affected

Vendor Statement

Fujitsu's UXP/V o.s. is not affected by the problem in VU#527736.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Hewlett-Packard Company Not Affected

Updated:  April 03, 2003

Status

Not Affected

Vendor Statement

SOURCE: Hewlett-Packard Company HP Services Software Security Response Team Update 01 x-ref: SSRT3532 Hewlett Packard has investigated this report and find that: HP-UX - not vulnerable HP-MPE/ix - not vulnerable HP Tru64 UNIX - not vulnerable HP OpenVMS - not vulnerable HP NonStop Servers - not vulnerable

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Hitachi Not Affected

Updated:  April 11, 2003

Status

Not Affected

Vendor Statement

Hitachi's HI-UX/WE2 is NOT vulnerable, because it does not have mkpasswd.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

Red Hat Inc. Affected

Updated:  April 02, 2003

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Red Hat has fixed this problem. For details, please see Bugzilla Bug 9507.