Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 15/02/2017 Updated: 01/09/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscapeID 0x100008b where user provided input is used as the limit for a loop may lead to denial of service or potential escalation of privileges

Vulnerable Product	Search on Vulmon	Subscribe to Product
nvidia gpu_driver -

Source: bugschromiumorg/p/project-zero/issues/detail?id=985 The DxgkDdiEscape handler for 0x100008b accepts a user supplied size as the limit for a loop, leading to OOB reads and writes The supplied PoC passes an invalid size of 0x41414141, which causes ...

CWE-20 http://nvidia.custhelp.com/app/answers/detail/a_id/4398 https://www.exploit-db.com/exploits/41364/https://nvd.nist.gov https://www.exploit-db.com/exploits/41364/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-0312

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect