...
Using the POSIX function open() to create a file but failing to provide access permissions for that file may cause that the file to be created with unintended access permissions. This omission has been known to lead to vulnerabilities; for instance, CVE-2006-1174.
...