Stack Buffer Overflow in NVIDIA Windows GPU Display Driver R340 and R375

Stack Buffer Overflow in NVIDIA Windows GPU Display Driver R340 and R375

CVE-2016-8807 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x10000e9 where a value is passed from an user to the driver is used without validation as the size input to memcpy() causing a stack buffer overflow, leading to denial of service or potential escalation of privileges.

Learn more about our User Device Pen Test.