Detections
Analytics

HP ArcSight Logger < 5.3 Multiple Vulnerabilities (credentialed check)

medium Nessus Plugin ID 69444

Language:

Synopsis

A log collection and management system on the remote host has multiple vulnerabilities.

Description

According to its self-reported version number, the version of HP ArcSight Logger installed on the remote host is affected by the following vulnerabilities :

 - An error exists related to handling host file imports that could allow cross-site scripting attacks.
 (CVE-2012-2960)

 - An unspecified error exists that could allow a remote attacker to inject commands. (CVE-2012-3286)

 - An unspecified error exists that could allow unspecified information disclosure. (CVE-2012-5198)

 - An unspecified error exists that could allow a local attacker to inject commands. (CVE-2012-5199)

Solution

Upgrade to ArcSight Logger 5.3 or later.

See Also

http://www.nessus.org/u?1858a65c

Plugin Details

Severity: Medium

ID: 69444

File Name: arcsight_logger_5_3_local.nasl

Version: 1.12

Type: local

Agent: unix

Family: Misc.

Published: 7/11/2013

Updated: 10/25/2021

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2012-3286

Vulnerability Information

CPE: cpe:/a:hp:arcsight_logger

Required KB Items: hp/arcsight_logger/ver

Exploit Ease: No known exploits are available

Patch Publication Date: 2/14/2013

Vulnerability Publication Date: 8/6/2012

Reference Information

CVE: CVE-2012-2960, CVE-2012-3286, CVE-2012-5198, CVE-2012-5199

BID: 54824, 57975, 57976, 57978

CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990

CERT: 829260, 960468, 988100