FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

NVIDIA UNIX driver -- arbitrary root code execution vulnerability

Affected packages
1.0.8762 <= nvidia-driver < 1.0.8776

Details

VuXML ID a6d9da4a-5d5e-11db-8faf-000c6ec775d9
Discovery 2006-10-16
Entry 2006-10-16
Modified 2006-10-21

Rapid7 reports:

The NVIDIA Binary Graphics Driver for Linux is vulnerable to a buffer overflow that allows an attacker to run arbitrary code as root. This bug can be exploited both locally or remotely (via a remote X client or an X client which visits a malicious web page). A working proof-of-concept root exploit is included with this advisory.

The NVIDIA drivers for Solaris and FreeBSD are also likely to be vulnerable.

[source]

Disabling Render acceleration in the "nvidia" driver, via the "RenderAccel" X configuration option, can be used as a workaround for this issue.

References

CERT/CC Vulnerability Note 147252
CVE Name CVE-2006-5379
URL http://nvidia.custhelp.com/cgi-bin/nvidia.cfg/php/enduser/std_adp.php?p_faqid=1971
URL http://secunia.com/advisories/22419/
URL http://www.rapid7.com/advisories/R7-0025.jsp

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.