CVE-2015-1170

Name of the Vulnerable Software and Affected Versions NVIDIA Display Driver R304 versions prior to 309.08 NVIDIA Display Driver R340 versions prior to 341.44 NVIDIA Display Driver R343 versions prior to 345.20 NVIDIA Display Driver R346 versions prior to 347.52

Description The issue allows local users to gain administrator privileges due to improper validation of local client impersonation levels during a "kernel administrator check". This can be achieved via unspecified API calls.

Recommendations For NVIDIA Display Driver R304 versions prior to 309.08, update to version 309.08 or later. For NVIDIA Display Driver R340 versions prior to 341.44, update to version 341.44 or later. For NVIDIA Display Driver R343 versions prior to 345.20, update to version 345.20 or later. For NVIDIA Display Driver R346 versions prior to 347.52, update to version 347.52 or later.