CVE-2001-0960

3 documents3 sources

Severity

10.0CRITICAL

EPSS

1.4%

top 19.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Arcserve Backup

Timeline

PublishedSep 15

Latest updateApr 30

Description

Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the aremote.dmp file in the ARCSERVE$ hidden share, which allows local and remote attackers to gain privileges.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDbroadcom/arcserve_backup6.61

Patches

Patch: support.ca.com ↗Patch: www.securityfocus.com ↗Patch: support.ca.com ↗

🔴Vulnerability Details

GHSA

GHSA-cf23-2rv8-wr4g: Computer Associates ARCserve for NT 6↗2022-04-30

▶

CVEList

CVE-2001-0960: Computer Associates ARCserve for NT 6↗2003-04-02

▶