PT-2007-1105 · Nvidia · Nvidia Driver

Greg

Published

2007-07-27

Updated

2009-12-28

CVE-2007-3532

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: nvidia-drivers versions before 1.0.7185 nvidia-drivers versions before 1.0.9639 nvidia-drivers versions before 100.14.11

Description: The issue allows local users to modify video card settings, cause a denial of service, and obtain sensitive information due to insecure permissions of /dev/nvidia* device files. Exploitation of this issue can lead to a violation of confidentiality, integrity, and availability of protected information.

Recommendations: For versions before 1.0.7185, update to version 1.0.7185 or later. For versions before 1.0.9639, update to version 1.0.9639 or later. For versions before 100.14.11, update to version 100.14.11 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2015-09586

CVE-2007-3532

Affected Products

Nvidia Driver

PT-2007-1105 · Nvidia · Nvidia Driver

CVE-2007-3532

Weakness Enumeration

Related Identifiers

Affected Products

References · 9