PT-2007-5501 · Amd · Atidsmxx.Sys
Published
2007-08-13
·
Updated
2012-10-18
·
CVE-2007-4315
CVSS v2.0
6.9
Medium
| Vector | AV:L/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
atidsmxx.sys version 3.0.502.0
Description
The issue allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and gain privileges. This is demonstrated by "Purple Pill".
Recommendations
For atidsmxx.sys version 3.0.502.0, consider updating to a newer version that addresses this issue, as using an outdated driver can pose significant security risks. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Atidsmxx.Sys