TUCoPS :: Linux :: Apps A-M :: flagsh.htm

FlagShip v4.48.7449 Inappropriate Permissions 
Vulnerability

    FlagShip

Affected

    FlagShip v4.48.7449

Description

    'Narrow' found following.   FlagShip is a cross-platform  database
    development  system,  fully  compatible  to  Clipper, handles also
    other xBase dialects.  FlagShip is shipped with Red Hat linux  6.0
    Application CD.

    Several binary files  are world writeable.   Anyone could  replace
    them  with  a  trojan  and  trick  someone to execute the trojaned
    binary files.  The binary files:

        /usr/bin/FSserial
        /usr/bin/FlagShip_c
        /usr/bin/FlagShip_p

Solution

    Change the premission of the binary files to 755.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2025 AOH