lang:

C

regex:

chown\s?\(|chgrp\s?\(|chmod\s?\(|readlink\s?\(

description:

This accepts filename arguments; if an attacker can move those files, a race condition results.

Use fchown(), fchgrp(), fchmod() instead.
tags:
race condition cwe-362
results