HP ArcSight ESM < 6.8c Information Disclosure
Medium Nessus Plugin ID 90266
SynopsisA security management system installed on the remote host is affected by an information disclosure vulnerability.
DescriptionAccording to its self-reported version number, the version of HP ArcSight Enterprise Security Manager (ESM) installed on the remote host is prior to 184.108.40.2066 (6.8c). It is, therefore, affected by an unspecified flaw that allows an authenticated, remote attacker to disclose sensitive information.
SolutionUpgrade to HP ArcSight ESM version 220.127.116.116 (6.8c) or later.