Lucene search

[email protected]CVE-2015-6927

HistorySep 28, 2015 - 8:59 p.m.

CVE-2015-6927

2015-09-2820:59:09

CWE-59

[email protected]

web.nvd.nist.gov

cve-2015-6927

vzctl

virtual environment

root user

symlink attack

ploop container

security vulnerability

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.8%

JSON

vzctl before 4.9.4 determines the virtual environment (VE) layout based on the presence of root.hdd/DiskDescriptor.xml in the VE private directory, which allows local simfs container (CT) root users to change the root password for arbitrary ploop containers, as demonstrated by a symlink attack on the ploop container root.hdd file and then access a control panel.

Affected configurations

NVD

Node

openvzvzctlRange≤4.9.3

CPENameOperatorVersion
openvz:vzctlopenvz vzctlle4.9.3

CPE	Name	Operator	Version
openvz:vzctl	openvz vzctl	le	4.9.3

References

www.debian.org/security/2015/dsa-3357

openvz.org/Download/vzctl/4.9.4

security.gentoo.org/glsa/201701-30

src.openvz.org/projects/OVZL/repos/vzctl/commits/9e98ea630ac0e88b44e3e23c878a5166aeb74e1c

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.8%

JSON

Related for CVE-2015-6927

debiancve1 cvelist1 gentoo1 prion1 nessus2 ubuntucve1 nvd1 openvas2 osv1