uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary commands by modifying the temporary file before it is moved.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ca arcserve backup 6.63_linux |