12 matches found
EUVD-2012-2938
Malware in sbrugna...
EUVD-2012-3264
Malware in sbrugna...
EUVD-2012-5121
Malware in sbrugna...
HP ArcSight WINC Connector Remote Code Execution Vulnerability
HP Arcsight is a unified security solution that enables advanced correlation analysis, log management and user activity monitoring. A remote code execution vulnerability exists in the HP ArcSight WINC Connector, which can be exploited by an attacker to execute arbitrary code in the context of an...
[security bulletin] HPSBMU02836 SSRT101056 rev.1 - HP ArcSight Connector Appliance and ArcSight Logger, Remote Disclosure of Information, Command Injection, Cross-Site Scripting (XSS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03606700 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03606700 Version: 1 HPSBMU02836...
CVE-2012-3286
Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...
CVE-2012-5199
Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to execute arbitrary code via unknown vectors...
CVE-2012-5199
Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to execute arbitrary code via unknown vectors...
CVE-2012-5198
HP ArcSight Connector Appliance older than 6.3 and ArcSight Logger older than 5.2 are affected by CVE-2012-5198, a remote information-disclosure vulnerability with unknown vectors. HP's security bulletin HPSBMU02836/SSRT notes remediation: upgrade to ArcSight Connector Appliance 6.4 and ArcSight ...
PT-2013-19: XML External Entities Resolution vulnerability in HP ArcSight Connector
The specialists of the Positive Research center have detected an XML External Entities Resolution vulnerability in HP ArcSight Connector. An attacker is able to import a specially crafted XML file, which would force ArcSight Connector to disclose local or remote resources to a malicious server on...
CVE-2012-2960
CVE-2012-2960 affects HP ArcSight Connector Appliance 6.2.0.6244.0 and ArcSight Logger 5.2.0.6288.0, with a cross-site scripting (XSS) flaw in the file import feature that allows a crafted file to execute arbitrary script in the web GUI. CERT/HP notes remote disclosure of information, and possibl...
CVE-2011-0770
Cross-site scripting XSS vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file...