CVE-2000-0781 Information

Description

uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file which allows local users to execute arbitrary commands by modifying the temporary file before it is moved.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-07/0431.html http://www.securityfocus.com/bid/1519 https://exchange.xforce.ibmcloud.com/vulnerabilities/5023