Vulnerabilities > CVE-2001-1346
Attack vector
LOCAL Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
Application | 1 |
Exploit-Db
description ARCservIT 6.61/6.63 Client inetd.tmp Arbitrary File Overwrite Vulnerability. CVE-2001-1346. Local exploit for linux platform id EDB-ID:20868 last seen 2016-02-02 modified 2001-05-18 published 2001-05-18 reporter Jonas Eriksson source https://www.exploit-db.com/download/20868/ title ARCservIT 6.61/6.63 Client inetd.tmp Arbitrary File Overwrite Vulnerability description ARCservIT 6.61/6.63 Client asagent.tmp Arbitrary File Overwrite Vulnerability. CVE-2001-1346. Local exploit for linux platform id EDB-ID:20867 last seen 2016-02-02 modified 2001-05-18 published 2001-05-18 reporter Jonas Eriksson source https://www.exploit-db.com/download/20867/ title ARCservIT 6.61/6.63 Client asagent.tmp Arbitrary File Overwrite Vulnerability