Providing software solutions since 1976

• Log in
• Create profile
• Welcome
  [Log out]
• Edit profile

• Print  |
• Feedback  |
• Share

  • E-mail

  
  
  

  E-mail This Page

  Your Name:*
  Your E-mail:*
  Recipient E-mail:*
  Send a copy to me
  Personal Message:
  
  

  * indicates a required field

In Version 8 of SAS/SHARE Software, clients may find that they can
update SAS data sets through a secured SAS/SHARE server when the client
account lacks the appropriate file permissions to do so.

This problem exists only when ALL of the following conditions are true:

   1.  The server session is running with the TCPSEC=_SECURE_ and
       AUTHENTICATE=REQUIRED options specified.

   2.  An initial client account with valid read and write permissions
       has a SAS data set opened for update through the server.

   3.  While the valid read and write client has the data set open for
       update, other client accounts (lacking proper file permissions)
       can successfully open the same data set for update.

It should be noted that if the read and write client opens the data set
for input (read), subsequent access by others are properly controlled by
their respective file permissions and proper access is enforced.


A Technical Support hot fix for Release 8.1 TSLEVEL TS1M0 for this
issue is available at:

http://www.sas.com/techsup/download/hotfix/81_sbcs_prod_list.html#004509


A Technical Support hot fix for Release 8.2 TSLEVEL TS2M0 for this
issue is available at:

http://www.sas.com/techsup/download/hotfix/82_sbcs_prod_list.html#004509

For customers running SAS with Asian Language Support (DBCS), this
hot fix should be downloaded from:

http://www.sas.com/techsup/download/hotfix/82_dbcs_prod_list.html#004509

Operating System and Release Information

A fix for Release 8.1 (TS1M0) for this issue is available at:

A fix for Release 8.2 (TS2M0) for this issue is available at:

A fix for Release 8.2 (TS2M0) with Asian Language Support (DBCS) for this issue is available at: