Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0224. PoCs published by Shawn Bracken.
AI-analyzed exploit summary This exploit leverages a symlink following vulnerability in the ARCserve agent (asagent) on SCO Unixware 7. By replacing a temporary file in /tmp with a symlink, an attacker can create arbitrary files owned by root, using the contents of a world-writable configuration file.
Description
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.
Exploits (1)
This exploit leverages a symlink following vulnerability in the ARCserve agent (asagent) on SCO Unixware 7. By replacing a temporary file in /tmp with a symlink, an attacker can create arbitrary files owned by root, using the contents of a world-writable configuration file.