PT-2001-1374 · Uc Berkeley · Arpwatch
Published
2001-03-12
·
Updated
2017-10-10
·
CVE-2001-0140
CVSS v2.0
1.2
Low
| Vector | AV:L/AC:H/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
arpwatch version 2.1a4
Description:
The issue allows local users to overwrite arbitrary files via a symlink attack in certain configurations.
Recommendations:
For arpwatch version 2.1a4, consider restricting file system access to prevent arbitrary file overwrites until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Arpwatch