CVE-2015-6927

Name of the Vulnerable Software and Affected Versions vzctl versions prior to 4.9.4

Description The issue allows local simfs container root users to change the root password for arbitrary ploop containers. This can be achieved through a symlink attack on the ploop container root.hdd file, which then grants access to a control panel.

Recommendations For versions prior to 4.9.4, update to version 4.9.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the VE private directory to prevent symlink attacks on the ploop container root.hdd file.