CVE - CVE-2015-1170

CVE-ID
CVE-2015-1170	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The NVIDIA Display Driver R304 before 309.08, R340 before 341.44, R343 before 345.20, and R346 before 347.52 does not properly validate local client impersonation levels when performing a "kernel administrator check," which allows local users to gain administrator privileges via unspecified API calls.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://nvidia.custhelp.com/app/answers/detail/a_id/3634 CONFIRM:https://support.lenovo.com/product_security/nvidia_windows_privilege CONFIRM:https://support.lenovo.com/us/en/product_security/nvidia_windows_privilege HP:HPSBHF03271 URL:http://marc.info/?l=bugtraq&m=142781493222653&w=2 HP:HPSBHF03272 URL:http://marc.info/?l=bugtraq&m=143013598825091&w=2 HP:SSRT101950 URL:http://marc.info/?l=bugtraq&m=143013598825091&w=2 SECTRACK:1032013 URL:http://www.securitytracker.com/id/1032013
Assigning CNA
MITRE Corporation
Date Record Created
20150117	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20150117)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)