CVE-2015-6030

Name of the Vulnerable Software and Affected Versions HP ArcSight Logger version 6.0.0.7307.1 HP ArcSight Command Center version 6.8.0.1896.0 HP ArcSight Connector Appliance version 6.4.0.6881.3

Description The issue allows local users to potentially gain privileges by leveraging access to the arcsight account. This is because the software uses the root account to execute files owned by the arcsight user.

Recommendations For HP ArcSight Logger version 6.0.0.7307.1, consider restricting access to the arcsight account to minimize the risk of exploitation. For HP ArcSight Command Center version 6.8.0.1896.0, restrict the execution of files owned by the arcsight user to prevent potential privilege escalation. For HP ArcSight Connector Appliance version 6.4.0.6881.3, limit the use of the root account for executing files to reduce the risk of exploitation.