CVE-2000-0781Arcserve Backup vulnerability

3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 80.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
CA Arcserve Backup
Timeline
PublishedOct 20
Latest updateApr 30

Description

uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary commands by modifying the temporary file before it is moved.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDca/arcserve_backup6.63_linux

🔴Vulnerability Details

2
GHSA
GHSA-fq8g-x6c4-fpm3: uagentsetup in ARCServeIT Client Agent 62022-04-30
CVEList
CVE-2000-0781: uagentsetup in ARCServeIT Client Agent 62004-09-01
CVE-2000-0781 — CA Arcserve Backup vulnerability | cvebase