CVE-2001-0960
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
15/09/2001
Last modified:
03/04/2025
Description
Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the aremote.dmp file in the ARCSERVE$ hidden share, which allows local and remote attackers to gain privileges.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:broadcom:arcserve_backup:6.61:sp2a:*:*:*:*:*:* | ||
| cpe:2.3:a:broadcom:arcserve_backup_2000:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ca:arcserve_backup_2000:*:*:advanced:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/bugtraq/2001-09/0137.html
- http://support.ca.com/Download/patches/asitnt/QO00945.html
- http://www.securityfocus.com/bid/3343
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7122
- http://archives.neohapsis.com/archives/bugtraq/2001-09/0137.html
- http://support.ca.com/Download/patches/asitnt/QO00945.html
- http://www.securityfocus.com/bid/3343
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7122