CVE-2013-0109 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2013-0109?

CVE-2013-0109 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-0109?

Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Display Driver.

Vulnerability Description

The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cause a denial of service (memory overwrite) via a crafted application.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Nvidia	Display Driver	<= 307.00

Related Weaknesses (CWE)

CWE-119

References

http://www.kb.cert.org/vuls/id/957036US Government Resource
http://www.nvidia.com/object/product-security.htmlPatchVendor Advisory
http://www.kb.cert.org/vuls/id/957036US Government Resource
http://www.nvidia.com/object/product-security.htmlPatchVendor Advisory

FAQ

What is CVE-2013-0109?

CVE-2013-0109 is a vulnerability with a CVSS score of 7.2 (HIGH). The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or caus...

How severe is CVE-2013-0109?

CVE-2013-0109 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-0109?

Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Display Driver.