CVE-2011-2779

Description

Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable permissions for exported report files, which allows local users to change or delete log data by modifying a file, a different vulnerability than CVE-2011-0770.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/68855

http://www.kb.cert.org/vuls/id/122054

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS