Vulnerability Description
The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to execute arbitrary code via a large width value in a font glyph, which can be used to overwrite arbitrary memory locations.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Binary Graphics Driver | v8762 |
References
- http://download2.rapid7.com/r7-0025/
- http://download2.rapid7.com/r7-0025/nv_exploit.cExploit
- http://nvidia.custhelp.com/cgi-bin/nvidia.cfg/php/enduser/std_adp.php?p_faqid=19
- http://secunia.com/advisories/22419Vendor Advisory
- http://secunia.com/advisories/22676
- http://secunia.com/advisories/22730
- http://secunia.com/advisories/22764
- http://secunia.com/advisories/23678
- http://security.gentoo.org/glsa/glsa-200611-03.xml
- http://securityreason.com/securityalert/1742
- http://securitytracker.com/id?1017072
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102693-1
- http://www.kb.cert.org/vuls/id/147252US Government Resource
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:007
- http://www.rapid7.com/advisories/R7-0025.jspVendor Advisory
FAQ
What is CVE-2006-5379?
CVE-2006-5379 is a vulnerability with a CVSS score of 7.5 (HIGH). The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to e...
How severe is CVE-2006-5379?
CVE-2006-5379 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5379?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Binary Graphics Driver.