Allele Security Alert
ASA-2019-00313
Identifier(s)
ASA-2019-00313, CVE‑2019‑5676
Title
DLL preloading attack (binary planting) in installer software
Vendor(s)
NVIDIA
Product(s)
NVIDIA GeForce Experience
Affected version(s)
NVIDIA GeForce Experience versions prior to 3.19 running on Windows
Fixed version(s)
NVIDIA GeForce Experience version 3.19
Proof of concept
Unknown
Description
NVIDIA GeForce Experience installer software contains a vulnerability in which it incorrectly loads Windows system DLLs without validating the path or signature (also known as a binary planting or DLL preloading attack), leading to escalation of privileges through code execution. The attacker requires local system access.
Technical details
Unknown
Credits
Kushal Arvind Shah (Fortinet FortiGuard Labs)
Łukasz ‘zaeek’
Yasin Soliman
Marius Gabriel Mihai
Stefan Kanthak
Reference(s)
Security Bulletin: NVIDIA GeForce Experience – May 2019
https://nvidia.custhelp.com/app/answers/detail/a_id/4806
CVE‑2019‑5676
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE‑2019‑5676
CVE‑2019‑5676
https://nvd.nist.gov/vuln/detail/CVE‑2019‑5676
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: June 5, 2019