World-writable permissions in Arkeia backup server 4.2.8-2 and earlier allow unauthorized access and data manipulation

World-writable permissions in Arkeia backup server 4.2.8-2 and earlier allow unauthorized access and data manipulation

CVE-2001-0988 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information.

Learn more about our Cis Benchmark Audit For Server Software.