CVE-2001-1346
Computer Associates ARCserveIT <6.63 - Local Privilege Escalation
Title source: llmDescription
Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Jonas Eriksson · textlocallinux
https://www.exploit-db.com/exploits/20868
exploitdb
WORKING POC
VERIFIED
by Jonas Eriksson · textlocallinux
https://www.exploit-db.com/exploits/20867
References (3)
Core 3
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-05/0184.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2748
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2741
Scores
EPSS
0.0059
EPSS Percentile
69.4%
Details
Status
published
Products (2)
broadcom/arcserve_backup
6.61
ca/arcserve_backup
6.63
Published
May 18, 2001
Tracked Since
Feb 18, 2026