Vulnerability CVE-2016-8812 - CERT Civis.Net

Vulnerability Name:

CVE-2016-8812 (CCN-118795)

Assigned:

2016-11-02

Published:

2016-11-02

Updated:

2017-09-03

Summary:

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52 contains a vulnerability in the kernel mode layer (nvstreamkms.sys) allowing a user to cause a stack buffer overflow with specially crafted executable paths, leading to a denial of service or escalation of privileges.

CVSS v3 Severity:

8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2016-8812

Source: CCN
Type: NVIDIA Security Bulletin 4247
Vulnerabilities in NVIDIA Windows GPU Display Driver and NVIDIA GeForce Experience

Source: CONFIRM
Type: Patch, Vendor Advisory
http://nvidia.custhelp.com/app/answers/detail/a_id/4247

Source: BID
Type: Third Party Advisory, VDB Entry
93986

Source: CCN
Type: BID-93986
NVIDIA GPU Driver CVE-2016-8812 Local Stack Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
nvidia-cve20168812-bo(118795)

Source: EXPLOIT-DB
Type: UNKNOWN
40660

Vulnerable Configuration:

Configuration 1:

cpe:/a:nvidia:geforce_experience:*:*:*:*:*:*:*:* (Version <= -)

AND

cpe:/h:nvidia:geforce_910m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_920m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_920mx:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_930m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_930mx:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_940m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_940mx:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_945m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gt_710:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gt_730:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_1050:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_1060:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_1070:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_1080:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_950m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_960m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_gtx_965m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_310:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_315:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_510:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_810:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_k1200:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_k420:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_k620:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m1000m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m2000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m2000m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m3000m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m4000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m4000m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m5000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m5000m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m500m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m5500:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m6000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m600m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_p5000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_p6000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:titan_x:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/h:nvidia:quadro_k420:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_k1200:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_p6000:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:quadro_m5500:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_910m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_920m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_930m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:geforce_940m:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_310:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_315:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_510:-:*:*:*:*:*:*:*

OR cpe:/h:nvidia:nvs_810:-:*:*:*:*:*:*:*

Denotes that component is vulnerable