Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx, security-alerts@xxxxxxxxxxxxxxxxx
Subject: Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
From: "Nick Boyce" <nick.boyce@xxxxxxxxx>
Date: Mon, 13 Nov 2006 17:19:52 +0000
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=NXdq3sjNoHVF2QfOCY5yv1AmpB/5b0mjE0AeLoHcQx1bMyPzFzTidWLF0WSIHygrZqPzIQod3FLHEOL2M4gM5oeNBd6ySop2vb5UqQTXKO/PeQZbHCKx5hl2oIc8oaCINqmvX9pjwwyQL+ST75HLd2OoZ3dspAoUBj/7RKKGzlU=
In-reply-to: <20061107222418.GC2401@xxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20061107222418.GC2401@xxxxxxxxxxxxxxxx>

On 11/7/06, Raphael Marichez <falco@xxxxxxxxxx> wrote:

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200611-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: High
     Title: NVIDIA binary graphics driver: Privilege escalation
            vulnerability
      Date: November 07, 2006
      Bugs: #151635
        ID: 200611-03

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

The NVIDIA binary graphics driver is vulnerable to a local privilege
escalation

[snip]

An X client could trigger the buffer overflow with a maliciously
crafted series of glyphs. A remote attacker could also entice a user to
open a specially crafted web page, document or X client that will
trigger the buffer overflow.


um ... doesn't that make it a *remote* privilege escalation ?

Cheers,
Nick Boyce
--
The reason why worry kills more people than work is that more people
worry than work

Follow-Ups:
- Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
  - From: Glynn Clements
- Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
  - From: Raphael Marichez

References:
- [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
  - From: Raphael Marichez

Prev by Date: NuCommunity 1.0 (cl_CatListing.asp) Remote SQL Injection Exploit
Next by Date: NuRems 1.0 Remote XSS/SQL Injection Exploit
Previous by thread: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
Next by thread: Re: [ GLSA 200611-03 ] NVIDIA binary graphics driver: Privilege escalation vulnerability
Index(es):
- Date
- Thread