Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4315

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2007-4315
Last Modified 18 Oct 2012 12:00:00
Published 13 Aug 2007 05:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4315

Summary

The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill".

Vulnerable Systems

Application

  • Amd Catalyst Driver

  • Ati Catalyst Driver

  • Ati Catalyst Driver 3.0.502.0


References

BID - 25265

MISC - http://blogs.zdnet.com/security/?p=438

MISC - http://blogs.zdnet.com/security/?p=427

SECUNIA - 26448


Last Updated: 27 May 2016 10:53:36