Vigil@nce - Windows: privilege escalation via NVIDIA Display Driver
March 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can use an NVIDIA Display Driver on Windows, in
order to escalate his privileges.
– Impacted products: Windows 2008 R0, Windows 2008 R2, Windows 7,
Windows Vista, Windows XP
– Severity: 2/4
– Creation date: 03/03/2015
DESCRIPTION OF THE VULNERABILITY
NVIDIA products require a driver which have to be installed on
Windows:
– GeForce Notebook, Quadro, NVS Notebook
– GeForce Desktop
– Quadro, NVS Workstation
– GRID baremetal, GPU passthrough
– GRID virtual GPU (vGPU)
However, an attacker can use this driver, to access to privileged
resources.
A local attacker can therefore use an NVIDIA Display Driver on
Windows, in order to escalate his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Windows-privilege-escalation-via-NVIDIA-Display-Driver-16292