CVE-2011-2779

Published: Jul 19, 2011Modified: Apr 29, 2026

3.6

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:P

Exploitability: 3.9 / Impact: 4.9

Source: NVD

Description

Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.

Affected (7)

Products: Hp: Arcsight C1000 Appliance, Arcsight C1300 Appliance, Arcsight C3200 Appliance, Arcsight C3400 Appliance, Arcsight C5200 Appliance, Arcsight C5400 Appliance, Windows Event Log Smartconnector

7 products

Arcsight C1000 Appliance

Arcsight C1300 Appliance

Arcsight C3200 Appliance

Arcsight C3400 Appliance

Arcsight C5200 Appliance

Arcsight C5400 Appliance

Windows Event Log Smartconnector

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Hp Arcsight C1000 Appliance	All versions
Hp Arcsight C1300 Appliance	All versions
Hp Arcsight C3200 Appliance	All versions
Hp Arcsight C3400 Appliance	All versions
Hp Arcsight C5200 Appliance	All versions
Hp Arcsight C5400 Appliance	All versions
Hp Windows Event Log Smartconnector	Up to 6.0.0.60023.2

Related CWEs

CWE-264

References (4)

http://www.kb.cert.org/vuls/id/122054

Source: cve@mitre.org

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/68855

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/122054

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/68855

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.