CVE-2015-6030 Information

Description

HP ArcSight Logger 6.0.0.7307.1 ArcSight Command Center 6.8.0.1896.0 and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user which might allow local users to gain privileges by leveraging arcsight account access.

Reference

http://www.kb.cert.org/vuls/id/842252 http://www.securitytracker.com/id/1034072 http://www.securitytracker.com/id/1034073 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04872416