CVE-2011-2779
HP ArcSight Connector Appliance < 6.1 - Unauthenticated Log Data Tampering via World-Writable Report Files
Title source: llmDescription
Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68855
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/122054
Scores
EPSS
0.0008
EPSS Percentile
22.8%
Details
CWE
CWE-264
Status
published
Products (7)
hp/arcsight_c1000_appliance
hp/arcsight_c1300_appliance
hp/arcsight_c3200_appliance
hp/arcsight_c3400_appliance
hp/arcsight_c5200_appliance
hp/arcsight_c5400_appliance
hp/windows_event_log_smartconnector
< 6.0.0.60023.2
Published
Jul 19, 2011
Tracked Since
Feb 18, 2026