Lucene search
HistoryJul 19, 2011 - 8:55 p.m.
CVE-2011-0770
cve-2011-0770
cross-site scripting
xss
vulnerability
hp
arcsight
connector
appliance
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.018 Low
EPSS
Percentile
88.3%
Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file.
Affected configurations
Node
hpwindows_event_log_smartconnectorRange≤6.0.0.60023.2
ORhparcsight_c1000_appliance
ORhparcsight_c1300_appliance
ORhparcsight_c3200_appliance
ORhparcsight_c3400_appliance
ORhparcsight_c5200_appliance
ORhparcsight_c5400_appliance
Related
cvelist
cvelist
CVE-2011-0770
2011-07-19 20:00:00
CVE-2011-2779
2011-07-19 21:00:00
nvd
nvd
CVE-2011-0770
2011-07-19 20:55:00
CVE-2011-2779
2011-07-19 21:55:00
cert
cert
HP ArcSight Connector Appliance XSS vulnerability
2011-07-15 00:00:00
prion
prion
Cross site scripting
2011-07-19 20:55:00
Design/Logic Flaw
2011-07-19 21:55:00
cve
cve
CVE-2011-2779
2011-07-19 21:55:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.018 Low
EPSS
Percentile
88.3%
Related for CVE-2011-0770