PT-2013-2105 · Nvidia · Nvidia Update Service Daemon+1

Published

2013-04-08

Updated

2013-04-09

CVE-2013-0111

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions NVIDIA driver versions prior to 307.78 NVIDIA Release 310 versions prior to 311.00

Description The issue is related to the daemonu.exe, also known as the NVIDIA Update Service Daemon, which lacks double quote characters in the service path. This allows local users to gain privileges via a Trojan horse program.

Recommendations For NVIDIA driver versions prior to 307.78, update to version 307.78 or later. For NVIDIA Release 310 versions prior to 311.00, update to version 311.00 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-0111

Affected Products

Nvidia Update Service Daemon

Nvidia Driver

PT-2013-2105 · Nvidia · Nvidia Update Service Daemon+1

CVE-2013-0111

Related Identifiers

Affected Products

References · 3