Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1996_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1996: Re: Security problem in ESRI's ArcDoc 7.0.4

Re: Security problem in ESRI's ArcDoc 7.0.4

Andrew Raphael (raphaelresearch.canon.com.au)
Fri, 24 May 1996 18:20:13 +1000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Dave Taylor: "Re: Is _your_ Netscape under remote control"
Previous message: Montserrat Mirman Castillo: "Re: Is _your_ Netscape under remote control"
In reply to: James W. Abendschan: "Security problem in ESRI's ArcDoc 7.0.4"

>The program "fm_fls" as distributed with ESRI's "ArcDoc" package (7.0.4)
>[...]
>I've seen fm_fls distributed with other applications -- perhaps the
>bug is not specific to ARC/Info?

fm_fls is the FrameMaker license server.  It's not setuid in my vanilla
International FrameMaker installation, but the "chmod 666" behaviour
is there.  It just creates the log file owned by the first person to
run FrameMaker.


--
Andrew Raphael <raphaelresearch.canon.com.au>
        "Oh! I see, it's your birthday.  It's your big day, and I forgot."

Next message: Dave Taylor: "Re: Is _your_ Netscape under remote control"
Previous message: Montserrat Mirman Castillo: "Re: Is _your_ Netscape under remote control"
In reply to: James W. Abendschan: "Security problem in ESRI's ArcDoc 7.0.4"