CVE-2007-4315 : The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to

The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill".

Published 2007-08-13 21:17:00

Updated 2025-04-09 00:30:58

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2007-4315

ATI » Catalyst Driver
cpe:2.3:a:ati:catalyst_driver:*:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows Vista
AMD » Catalyst Driver
cpe:2.3:a:amd:catalyst_driver:*:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows Vista

Exploit prediction scoring system (EPSS) score for CVE-2007-4315

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 11 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2007-4315

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C	3.4	10.0	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2007-4315

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2007-4315

Jump to

Vulnerability Details : CVE-2007-4315

Products affected by CVE-2007-4315

Exploit prediction scoring system (EPSS) score for CVE-2007-4315

CVSS scores for CVE-2007-4315

CWE ids for CVE-2007-4315

References for CVE-2007-4315