Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2779

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2011-2779
Last Modified 10 Aug 2011 10:51:58
Published 19 Jul 2011 05:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-2779

Summary

Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.

Vulnerable Systems

Application

  • Hp Windows Event Log Smartconnector 6.0.0.60023.2


References

CERT-VN - VU#122054

XF - arcsight-windows-event-priv-escalation(68855)


Last Updated: 27 May 2016 10:57:06