{ "@context": "https://schema.org", "@type": "Organization", "name": "Brainscape", "url": "https://www.brainscape.com/", "logo": "https://www.brainscape.com/pks/images/cms/public-views/shared/Brainscape-logo-c4e172b280b4616f7fda.svg", "sameAs": [ "https://www.facebook.com/Brainscape", "https://x.com/brainscape", "https://www.linkedin.com/company/brainscape", "https://www.instagram.com/brainscape/", "https://www.tiktok.com/@brainscapeu", "https://www.pinterest.com/brainscape/", "https://www.youtube.com/@BrainscapeNY" ], "contactPoint": { "@type": "ContactPoint", "telephone": "(929) 334-4005", "contactType": "customer service", "availableLanguage": ["English"] }, "founder": { "@type": "Person", "name": "Andrew Cohen" }, "description": "Brainscape’s spaced repetition system is proven to DOUBLE learning results! Find, make, and study flashcards online or in our mobile app. Serious learners only.", "address": { "@type": "PostalAddress", "streetAddress": "159 W 25th St, Ste 517", "addressLocality": "New York", "addressRegion": "NY", "postalCode": "10001", "addressCountry": "USA" } }
Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

COSC301 (2023-2024) > Q6 PATH Environment Variable Security > Flashcards

Q6 PATH Environment Variable Security Flashcards

(1 cards)

Start Studying
1
Q

Use a potential attack example to explain why the following setting of the environment variable PATH may expose a security hole to attackers: PATH=”.:/bin:/usr/bin”.

A

When user types ls, system will check the current directory first, before checking the trusted system directories for exectubales

It will then find and run malicious ls script without users awareness.

Attacker can even make the malicious script execute the real, safe ls command avoiding detection completely.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

COSC301 (2023-2024) (18 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions