Unquoted Service Path Vulnerability in NVIDIA Quadro, NVS, and GeForce Products: Exploiting GFE GameStream and NVTray Plugin

CVE-2016-3161 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-3161 ID is for the GameStream unquoted service path.

Learn more about our User Device Pen Test.