Vulnerability Details : CVE-2007-4315
The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill".
Exploit prediction scoring system (EPSS) score for CVE-2007-4315
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-4315
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST |
CWE ids for CVE-2007-4315
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-4315
Products affected by CVE-2007-4315
- cpe:2.3:a:ati:catalyst_driver:*:*:*:*:*:*:*:*When used together with: Microsoft » Windows Vista
- cpe:2.3:a:amd:catalyst_driver:*:*:*:*:*:*:*:*When used together with: Microsoft » Windows Vista