| VID |
14094 |
| Severity |
40 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
jeusadmin which is the service daemon execution file of JEUS Application Server is not safe for secuirty reasons.
jeusadmin is a script file to start JEUS Application Server. If there is permission to write to the file, Serious problems can occur for secuirty reason. Therefore, Restriction is necessary for non-administrative users to write.
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Remove other user's write permissions from the file as the following
chmod o-w (if the group has write permission: g-w) ./jeusadmin
ex) chmod o-w JEUS_HOME/bin/jeusadmin
ex) chmod g-w JEUS_HOME/bin/jeusadmin |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
