CVE - CVE-2006-5379

CVE-ID
CVE-2006-5379	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to execute arbitrary code via a large width value in a font glyph, which can be used to overwrite arbitrary memory locations.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:20559 URL:http://www.securityfocus.com/bid/20559 BUGTRAQ:20061016 Rapid7 Advisory R7-0025: Buffer Overflow in NVIDIA Binary Graphics Driver For Linux URL:http://www.securityfocus.com/archive/1/448860/100/0/threaded BUGTRAQ:20061113 Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability URL:http://www.securityfocus.com/archive/1/451329/100/0/threaded CERT-VN:VU#147252 URL:http://www.kb.cert.org/vuls/id/147252 CONFIRM:http://nvidia.custhelp.com/cgi-bin/nvidia.cfg/php/enduser/std_adp.php?p_faqid=1971 GENTOO:GLSA-200611-03 URL:http://security.gentoo.org/glsa/glsa-200611-03.xml MANDRIVA:MDKSA-2007:007 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2007:007~~ (Obsolete source) MISC:http://download2.rapid7.com/r7-0025/ MISC:http://download2.rapid7.com/r7-0025/nv_exploit.c MISC:http://www.rapid7.com/advisories/R7-0025.jsp SECTRACK:1017072 URL:http://securitytracker.com/id?1017072 SECUNIA:22419 URL:http://secunia.com/advisories/22419 SECUNIA:22676 URL:http://secunia.com/advisories/22676 SECUNIA:22730 URL:http://secunia.com/advisories/22730 SECUNIA:22764 URL:http://secunia.com/advisories/22764 SECUNIA:23678 URL:http://secunia.com/advisories/23678 SREASON:1742 URL:http://securityreason.com/securityalert/1742 SUNALERT:102693 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-102693-1~~ (Obsolete source) UBUNTU:USN-377-1 URL:http://www.ubuntu.com/usn/usn-377-1 VUPEN:ADV-2006-4053 URL:~~http://www.vupen.com/english/advisories/2006/4053~~ (Obsolete source) VUPEN:ADV-2006-4328 URL:~~http://www.vupen.com/english/advisories/2006/4328~~ (Obsolete source) XF:nvidia-linux-driver-bo(29622) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/29622
Assigning CNA
MITRE Corporation
Date Record Created
20061017	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061017)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)