NVIDIA Stereoscopic 3D Driver CVE-2011-4784 Local Privilege Escalation Vulnerability

Bugtraq ID:	51148
Class:	Input Validation Error
CVE:	CVE-2011-4784
Remote:	No
Local:	Yes
Published:	Dec 20 2011 12:00AM
Updated:	Dec 20 2011 12:00AM
Credit:	Jeong Wook Oh, Microsoft Malware Protection Center (MMPC)
Vulnerable:	NVIDIA Stereoscopic 3D Driver 7.17.12 7536
Not Vulnerable:	NVIDIA Stereoscopic 3D Driver 7.17.12 7565

NVIDIA Stereoscopic 3D Driver CVE-2011-4784 Local Privilege Escalation Vulnerability

NVIDIA Stereoscopic 3D Driver is prone to a local privilege-escalation vulnerability.

A local attacker may exploit this issue to execute arbitrary code with Local System privileges. Successful exploits will result in the complete compromise of affected computers.

NVIDIA Stereoscopic 3D Driver 7.17.12.7536 is affected; other versions may also be vulnerable.

NVIDIA Stereoscopic 3D Driver CVE-2011-4784 Local Privilege Escalation Vulnerability

Currently we are not aware of any exploits. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected]

NVIDIA Stereoscopic 3D Driver CVE-2011-4784 Local Privilege Escalation Vulnerability

Solution:
Vendor updates are available. Please see the references for details.

NVIDIA Stereoscopic 3D Driver CVE-2011-4784 Local Privilege Escalation Vulnerability

References:

• NVidia Home Page (NVidia)
  
• Vulnerability in NVIDIA Stereoscopic 3D Driver Could Allow Elevation of Privileg (Microsoft)