Allele Security Alert
DLL preloading attack (binary planting) in installer software
NVIDIA GeForce Experience
NVIDIA GeForce Experience versions prior to 3.19 running on Windows
NVIDIA GeForce Experience version 3.19
Proof of concept
NVIDIA GeForce Experience installer software contains a vulnerability in which it incorrectly loads Windows system DLLs without validating the path or signature (also known as a binary planting or DLL preloading attack), leading to escalation of privileges through code execution. The attacker requires local system access.
Kushal Arvind Shah (Fortinet FortiGuard Labs)
Marius Gabriel Mihai
Security Bulletin: NVIDIA GeForce Experience – May 2019
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: June 5, 2019