Normally, when a program is started, several standard file descriptors are opened, which are assigned to standard input, standard output, and standard error. If a program is started when not all these standard file descriptors are opened, the program might open a file and inadvertently associate it with one of the standard descriptors. The program might then read data from or write data to the file inappropriately. If the file is one that the user would normally not have privileges to open, this might result in an opportunity for privilege escalation.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center