AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
BID:25265
Info
AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
| Bugtraq ID: | 25265 |
| Class: | Design Error |
| CVE: |
CVE-2007-4315 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 10 2007 12:00AM |
| Updated: | May 07 2015 05:36PM |
| Credit: | This issue was disclosed by Alex Ionescu. |
| Vulnerable: |
ATI atidsmxx.sys 3.0.502 .0 |
| Not Vulnerable: | |
Discussion
AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
An AMD ATI driver is prone to a local privilege-escalation vulnerability because it is a signed driver and can read/write kernel memory.
Attacker's can exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. Successful attacks will completely compromise affected computers.
This issue affects atidsmxx.sys 3.0.502.0; other versions may also be affected.
An AMD ATI driver is prone to a local privilege-escalation vulnerability because it is a signed driver and can read/write kernel memory.
Attacker's can exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. Successful attacks will completely compromise affected computers.
This issue affects atidsmxx.sys 3.0.502.0; other versions may also be affected.
Exploit / POC
AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
A proof-of-concept tool called Purple Pill was made available for a short period of time by Alex Ionescu. It was available for 78 hours (starting August 7, 2007) before being pulled from distribution.
Currently we are not aware of any publicly available exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
A proof-of-concept tool called Purple Pill was made available for a short period of time by Alex Ionescu. It was available for 78 hours (starting August 7, 2007) before being pulled from distribution.
Currently we are not aware of any publicly available exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
AMD ATI ATIDSMXX.SYS Driver Local Privilege Escalation Vulnerability
References:
References:
- ATI driver flaw exposes Vista kernel to attackers (Ryan Naraine's Zero Day)
- ATI Homepage (AMD)
- Vista kernel tampering tool released, then mysteriously disappears (Ryan Naraine's Zero Day)