CVE-2011-0770

Currently unrated

Key Information:

Vendor: HP
Status: Arcsight C5400 Appliance; Arcsight C5200 Appliance; Arcsight C3200 Appliance; Arcsight C3400 Appliance
Vendor: CVE Published:; 19 July 2011

Summary

Cross-site scripting (XSS) vulnerability in Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 allows remote attackers to inject arbitrary web script or HTML via the Windows XP variable in a file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/68569

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/48694

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/122054

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Jul 19, 2011
Vulnerability Reserved
Feb 3, 2011