Vulnerability Details : CVE-2006-5379
Potential exploit
The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to execute arbitrary code via a large width value in a font glyph, which can be used to overwrite arbitrary memory locations.
Vulnerability category: Execute code
Products affected by CVE-2006-5379
- cpe:2.3:a:nvidia:binary_graphics_driver:v8762:*:linux:*:*:*:*:*
- cpe:2.3:a:nvidia:binary_graphics_driver:v8774:*:linux:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-5379
35.89%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 97 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-5379
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2006-5379
-
http://securityreason.com/securityalert/1742
Buffer Overflow in NVIDIA Binary Graphics Driver For Linux - CXSecurity.com
-
http://www.vupen.com/english/advisories/2006/4053
Site en construction
-
http://securitytracker.com/id?1017072
GoDaddy Domain Name Search
-
http://download2.rapid7.com/r7-0025/nv_exploit.c
Exploit
-
http://secunia.com/advisories/23678
About Secunia Research | Flexera
-
http://secunia.com/advisories/22419
About Secunia Research | FlexeraVendor Advisory
-
http://www.vupen.com/english/advisories/2006/4328
Site en construction
-
http://www.securityfocus.com/bid/20559
-
http://download2.rapid7.com/r7-0025/
-
http://secunia.com/advisories/22730
About Secunia Research | Flexera
-
http://nvidia.custhelp.com/cgi-bin/nvidia.cfg/php/enduser/std_adp.php?p_faqid=1971
Security Bulletin: CVE-2006-5379 NVIDIA UNIX graphics driver Vulnerability | NVIDIA
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/29622
NVIDIA Linux driver buffer overflow CVE-2006-5379 Vulnerability Report
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102693-1
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:007
Mandriva
-
http://secunia.com/advisories/22764
About Secunia Research | Flexera
-
http://www.ubuntu.com/usn/usn-377-1
-
http://www.rapid7.com/advisories/R7-0025.jsp
404 Page Not FoundVendor Advisory
-
http://secunia.com/advisories/22676
About Secunia Research | Flexera
-
http://www.securityfocus.com/archive/1/448860/100/0/threaded
-
http://www.securityfocus.com/archive/1/451329/100/0/threaded
-
http://www.kb.cert.org/vuls/id/147252
VU#147252 - NVIDIA Display Driver for Unix systems vulnerable to buffer overflowUS Government Resource
-
http://security.gentoo.org/glsa/glsa-200611-03.xml
NVIDIA binary graphics driver: Privilege escalation vulnerability (GLSA 200611-03) — Gentoo security
Jump to