CVE-2001-1346

Computer Associates ARCserveIT <6.63 - Local Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2001-1346. PoCs published by Jonas Eriksson.

AI-analyzed exploit summary This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' utility, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink at /tmp/inetd.tmp. The vulnerability arises due to improper file handling when the 'inet add' parameter is used.

Description

Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Jonas Eriksson · textlocallinux
https://www.exploit-db.com/exploits/20868

This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' utility, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink at /tmp/inetd.tmp. The vulnerability arises due to improper file handling when the 'inet add' parameter is used.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: ARCservIT (Computer Associates)
No auth needed
Prerequisites: local access to the system · ability to create symbolic links
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Jonas Eriksson · textlocallinux
https://www.exploit-db.com/exploits/20867

This exploit demonstrates a symbolic link vulnerability in ARCservIT's 'asagent' service, allowing local users to overwrite arbitrary files (e.g., /etc/passwd) by creating a symlink in /tmp/asagent.tmp before the service starts.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Computer Associates ARCservIT Universal Agent ADV v1.39
Auth required
Prerequisites: Local user access · Ability to create symbolic links in /tmp
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-05/0184.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2748
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2741

Scores

EPSS 0.0061
EPSS Percentile 44.5%

Details

Status published
Products (2)
broadcom/arcserve_backup 6.61
ca/arcserve_backup 6.63
Published May 18, 2001
Tracked Since Feb 18, 2026