...
Using the POSIX function open() to create a file but failing to provide access permissions for that file may cause that file to be created unintended access permissions. This omission has been known to lead to vulnerabilities; for instance, CVE-2006-1174.
...