Lucene search
HistoryJul 19, 2011 - 9:55 p.m.
CVE-2011-2779
hp
arcsight
connector appliance
cve-2011-2779
nvd
security vulnerability
log data
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
6.4 Medium
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.3%
Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.
Affected configurations
Node
hpwindows_event_log_smartconnectorRange≤6.0.0.60023.2
ORhparcsight_c1000_appliance
ORhparcsight_c1300_appliance
ORhparcsight_c3200_appliance
ORhparcsight_c3400_appliance
ORhparcsight_c5200_appliance
ORhparcsight_c5400_appliance
Related
prion
prion
Design/Logic Flaw
2011-07-19 21:55:00
Cross site scripting
2011-07-19 20:55:00
nvd
nvd
CVE-2011-2779
2011-07-19 21:55:00
CVE-2011-0770
2011-07-19 20:55:00
cvelist
cvelist
CVE-2011-2779
2011-07-19 21:00:00
CVE-2011-0770
2011-07-19 20:00:00
cve
cve
CVE-2011-0770
2011-07-19 20:55:00
cert
cert
HP ArcSight Connector Appliance XSS vulnerability
2011-07-15 00:00:00
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
6.4 Medium
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.3%
Related for CVE-2011-2779