Discus bad default permissions Vulnerability

Discus bad default permissions Vulnerability

Discus if a free WWW discussion board software package. The default configuration sets up a number of file with to broad permissions. These files include those with user passwords (passwd.txt). The installtion script determines what permissions to assign files by looking at the "filelist.txt" file. A local user could obtain read access to these files and crack the users passwords.