...
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Other Languages
This rule appears in the C++ Secure Coding Standard as FIO06-CPP. Create files with appropriate access permissions.
References
Wiki Markup |
---|
\[[CVE|AA. C References#CVE]\] \[[ISO/IEC 9899:1999|AA. C References#ISO/IEC 9899-1999]\] Section 7.19.5.3, "The {{fopen}} function" \[[ISO/IEC PDTR 24772|AA. C References#ISO/IEC PDTR 24772]\] "XZN Missing or Inconsistent Access Control" \[[MITRE 07|AA. C References#MITRE 07]\] [CWE ID 279|http://cwe.mitre.org/data/definitions/279.html], "Insecure Execution-assigned Permissions," and [CWE ID 276|http://cwe.mitre.org/data/definitions/276.html], "Insecure Default Permissions" \[[OpenBSD|AA. C References#OpenBSD]\] \[[Open Group 04|AA. C References#Open Group 04]\] "The {{open}} function," and "The {{umask}} function" \[[ISO/IEC TR 24731-1:2007|AA. C References#SO/IEC TR 24731-1-2007]\] Section 6.5.2.1, "The {{fopen_s}} function" \[[Viega 03|AA. C References#Viega 03]\] Section 2.7, "Restricting Access Permissions for New Files on UNIX" \[[Dowd 06|AA. C References#Dowd 06]\] Chapter 9, "UNIX 1: Privileges and Files" |
...