CVE-2013-0109
Nvidia (nvsvc) Display Driver Service - Local Privilege Escalation
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cause a denial of service (memory overwrite) via a crafted application.
El controlador NVIDIA anterior a v307.78, y Release v310 anterior a v311.00, en el controlador del servicio NVIDIA Display en Windows, no controla correctamente las excepciones, lo que permite a usuarios locales conseguir privilegios o causar una denegación de servicio (sobrescritura de memoria) a través de una aplicación manipulada.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-12-06 CVE Reserved
- 2013-04-08 CVE Published
- 2013-12-17 First Exploit
- 2024-09-17 CVE Updated
- 2024-11-06 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.kb.cert.org/vuls/id/957036 | Third Party Advisory |
|
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/30393 | 2013-12-17 |
| URL | Date | SRC |
|---|---|---|
| http://www.nvidia.com/object/product-security.html | 2013-04-09 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nvidia Search vendor "Nvidia" | Display Driver Search vendor "Nvidia" for product "Display Driver" | <= 307.00 Search vendor "Nvidia" for product "Display Driver" and version " <= 307.00" | windows |
Affected
| ||||||
| Nvidia Search vendor "Nvidia" | Display Driver Search vendor "Nvidia" for product "Display Driver" | 310.00 Search vendor "Nvidia" for product "Display Driver" and version "310.00" | windows |
Affected
| ||||||