JFYI:
http://download2.rapid7.com/r7-0025/
Buffer Overflow in NVIDIA Binary Graphics Driver For Linux
Moderator: Moderators
7 posts
• Page 1 of 1
Buffer Overflow in NVIDIA Binary Graphics Driver For Linux
by R4ND0M » Tue Oct 17, 2006 10:01 am
- R4ND0M
- Member
- Posts: 28
- Joined: Sun Jun 18, 2006 2:31 am
by esteel » Tue Oct 17, 2006 1:34 pm
Possible fixes are to use the beta drivers 9625 and 9626 or to disable the RenderAccel option.
http://www.nvnews.net/vbulletin/showthread.php?t=78322
http://www.nvnews.net/vbulletin/showthread.php?t=78322
- esteel
- Site admin and forum addon
- Posts: 3924
- Joined: Wed Mar 01, 2006 8:27 am
by divVerent » Tue Oct 17, 2006 8:36 pm
As I can say from my experience, disabling RenderAccel isn't THAT harmful. Video and 3D acceleration are unaffected, RenderAccel only accelerates font display and without it, it still is fast enough for me.
So as workaround, edit /etc/X11/xorg.conf and add to the "Device" section for the "nvidia" driver:
Option "RenderAccel" "False"
Then exit all applications and restart your X server (for example by zapping: Ctrl-Alt-Backspace) to make the change take effect.
So as workaround, edit /etc/X11/xorg.conf and add to the "Device" section for the "nvidia" driver:
Option "RenderAccel" "False"
Then exit all applications and restart your X server (for example by zapping: Ctrl-Alt-Backspace) to make the change take effect.
1. Open Notepad
2. Paste: ÿþMSMSMS
3. Save
4. Open the file in Notepad again
You can vary the number of "MS", so you can clearly see it's MS which is causing it.
2. Paste: ÿþMSMSMS
3. Save
4. Open the file in Notepad again
You can vary the number of "MS", so you can clearly see it's MS which is causing it.
- divVerent
- Site admin and keyboard killer
- Posts: 3809
- Joined: Thu Mar 02, 2006 4:46 pm
- Location: BRLOGENSHFEGLE
by divVerent » Tue Oct 17, 2006 8:40 pm
Ed wrote:I'd still use the driver since I'm not likely to get attacked. The whole network is stealthed.
A possible exploit is an input field on a website, like the "Subject" field of this forum software. The attacker can make a website with a very long string in this input field.
AFAIK an exploit for this is not in the wild yet, apart from POCs that "just" crash your X session.
1. Open Notepad
2. Paste: ÿþMSMSMS
3. Save
4. Open the file in Notepad again
You can vary the number of "MS", so you can clearly see it's MS which is causing it.
2. Paste: ÿþMSMSMS
3. Save
4. Open the file in Notepad again
You can vary the number of "MS", so you can clearly see it's MS which is causing it.
- divVerent
- Site admin and keyboard killer
- Posts: 3809
- Joined: Thu Mar 02, 2006 4:46 pm
- Location: BRLOGENSHFEGLE
by BusterDBK » Wed Dec 06, 2006 1:56 pm
divVerent wrote:AFAIK an exploit for this is not in the wild yet, apart from POCs that "just" crash your X session.
Oh me dark lord!
I've actually been kicked in the head by this thing once. I was using an online translator (I can't seem to find the link at this moment but will probably post it here if I do) that usually worked very well. THAT time, when I clicked 'Submit', having no time to even try to load the new page, the X session was bye bye. Logged in again, tried it again... Bang!
At that time I thought it was some wicked Firefox vulnerability (though it seemed weird because... still... it should take a lot to crash the session), but now it all became very clear. I'm going to edit my config and stuff, thanks guys
.
P.S.: Please DO excuse me for resurrecting a rather old topic but I just needed to comment.
- BusterDBK
- Alien
- Posts: 195
- Joined: Mon May 01, 2006 8:07 pm
- Location: Bucharest, Romania
7 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest