CVE-2001-1346
Computer Associates ARCserveIT <6.63 - Local Privilege Escalation
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2001-1346. PoCs published by Jonas Eriksson.
AI-analyzed exploit summary This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' utility, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink at /tmp/inetd.tmp. The vulnerability arises due to improper file handling when the 'inet add' parameter is used.
Description
Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.
Exploits (2)
This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' utility, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink at /tmp/inetd.tmp. The vulnerability arises due to improper file handling when the 'inet add' parameter is used.
This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' service, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink in /tmp/asagent.tmp before the service starts.