// For flags

CVE-2001-0960

 

Severity Score

10.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the aremote.dmp file in the ARCSERVE$ hidden share, which allows local and remote attackers to gain privileges.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2001-09-15 CVE Published
  • 2002-01-31 CVE Reserved
  • 2024-01-29 EPSS Updated
  • 2024-08-08 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Broadcom
Search vendor "Broadcom"
Arcserve Backup
Search vendor "Broadcom" for product "Arcserve Backup"
6.61
Search vendor "Broadcom" for product "Arcserve Backup" and version "6.61"
sp2a
Affected
Broadcom
Search vendor "Broadcom"
Arcserve Backup 2000
Search vendor "Broadcom" for product "Arcserve Backup 2000"
*-
Affected
Ca
Search vendor "Ca"
Arcserve Backup 2000
Search vendor "Ca" for product "Arcserve Backup 2000"
*advanced
Affected