header-logo
Suggest Exploit
vendor:
FlagShip
by:
SecurityFocus
7.2
CVSS
HIGH
Permissions Weakness
276
CWE
Product Name: FlagShip
Affected Version From: FlagShip 4.4
Affected Version To: FlagShip 4.4
Patch Exists: NO
Related CWE: N/A
CPE: a:multisoft:flagship:4.4
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

FlagShip 4.4 Installation Vulnerability

A vulnerability exists in the installation of Multisoft's FlagShip 4.4 product. Some binaries are installed with world writable permissions. This may allow an attacker to alter a binary and cause other users to execute arbitrary code.

Mitigation:

Ensure that all binaries are installed with appropriate permissions.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/1586/info

A vulnerability exists in the installation of Multisoft's FlagShip 4.4 product. Some binaries are installed with world writable permissions. This may allow an attacker to alter a binary and cause other users to execute arbitrary code.

The files: 
/usr/bin/FSserial 
/usr/bin/FlagShip_c
/usr/bin/FlagShip_p

are world writable.

Navigation

Suggest Exploit

Services By CQR