CVE-2013-0131

Published Apr 8, 2013

Last updated 3 months ago

CVSS info 7.1

Overview

Description: Buffer overflow in the NVIDIA GPU driver before 304.88, 310.x before 310.44, and 313.x before 313.30 for the X Window System on UNIX, when NoScanout mode is enabled, allows remote authenticated users to execute arbitrary code via a large ARGB cursor.
Source: cret@cert.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 10
Exploitability score: 3.9
Vector string: AV:N/AC:H/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:*:-:*:*:esx:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B0D1803-287B-4384-9B2D-BE93C743B378",
            "versionEndIncluding": "304.00"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:*:-:*:*:freebsd:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACA3AB89-8A19-4A1B-BF05-5B748FFB8526",
            "versionEndIncluding": "304.00"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:*:-:*:*:linux_kernel:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9610E2B6-3EF5-4633-91EE-CDAA3A8A3650",
            "versionEndIncluding": "304.00"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:*:-:*:*:sunos:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17EB76E8-6FAB-42D2-BED8-DFB7CC10C657",
            "versionEndIncluding": "304.00"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:195.22:-:*:*:esx:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4D3A62A-1CC2-4635-A6FA-4271948E81C7"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:195.22:-:*:*:freebsd:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06B419F8-31A1-45A2-BE65-653EC6192FD6"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:195.22:-:*:*:linux_kernel:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0AF1BC5-5677-4356-8B37-EB5CEDFB637D"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:195.22:-:*:*:sunos:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37BDAF21-F044-4396-90E5-F33BDB973FD0"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:310.00:-:*:*:esx:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41D3FED5-9D68-4F67-85F2-61B963F5DC2F"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:310.00:-:*:*:freebsd:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5316C431-7394-4EED-8B01-5979E86AA7AA"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:310.00:-:*:*:linux_kernel:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27F66892-C4F5-4C08-AD3D-2B96E3D1C473"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:310.00:-:*:*:sunos:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10A6AE1D-97AD-438F-8736-8C90CEEC87DC"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:313.00:-:*:*:esx:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44702200-39E6-4E5C-9E36-ADB50E1DA1B2"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:313.00:-:*:*:freebsd:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9D507E6-A001-48FF-821A-79874AF4CDE6"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:313.00:-:*:*:linux_kernel:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13DF1273-A4CC-4681-B2E3-898AD1C741C1"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_driver:313.00:-:*:*:sunos:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF7D66D4-3DF7-47EA-91E7-C54F98C60A42"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References