Vulnerabilities > CVE-2001-1346

047910
CVSS 1.2 - LOW
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
high complexity
broadcom
ca
exploit available

Summary

Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.

Vulnerable Configurations

Part Description Count
Application
Broadcom
1
Application
Ca
1

Exploit-Db

  • descriptionARCservIT 6.61/6.63 Client inetd.tmp Arbitrary File Overwrite Vulnerability. CVE-2001-1346. Local exploit for linux platform
    idEDB-ID:20868
    last seen2016-02-02
    modified2001-05-18
    published2001-05-18
    reporterJonas Eriksson
    sourcehttps://www.exploit-db.com/download/20868/
    titleARCservIT 6.61/6.63 Client inetd.tmp Arbitrary File Overwrite Vulnerability
  • descriptionARCservIT 6.61/6.63 Client asagent.tmp Arbitrary File Overwrite Vulnerability. CVE-2001-1346. Local exploit for linux platform
    idEDB-ID:20867
    last seen2016-02-02
    modified2001-05-18
    published2001-05-18
    reporterJonas Eriksson
    sourcehttps://www.exploit-db.com/download/20867/
    titleARCservIT 6.61/6.63 Client asagent.tmp Arbitrary File Overwrite Vulnerability