CVE Vulnerabilities

CVE-2011-2779

Published: Jul 19, 2011 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.6 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.

Affected Software

Name Vendor Start Version End Version
Arcsight_c5400_appliance Hp * *
Arcsight_c5200_appliance Hp * *
Arcsight_c3200_appliance Hp * *
Arcsight_c3400_appliance Hp * *
Arcsight_c1300_appliance Hp * *
Arcsight_c1000_appliance Hp * *
Windows_event_log_smartconnector Hp * 6.0.0.60023.2

References