CVE-2015-5441 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in HP ArcSight Management Center before 2.1 and ArcSight Logger before 6.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN51046809/index.html http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-005909.html http://www.securityfocus.com/archive/1/536877/100/0/threaded https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04797406