Vulnerabilities > CVE-2000-0781 - Unspecified vulnerability in CA Arcserve Backup 6.63Linux

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 2000-10-20

Updated: 2017-10-10

Summary

uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary commands by modifying the temporary file before it is moved.

Vulnerable Configurations

Part	Description	Count
Application	Ca CA Arcserve Backup 6.63_Linux	1

References

http://archives.neohapsis.com/archives/bugtraq/2000-07/0431.html
http://www.securityfocus.com/bid/1519
https://exchange.xforce.ibmcloud.com/vulnerabilities/5023