Vulnerability Details : CVE-2007-3851
The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.
Exploit prediction scoring system (EPSS) score for CVE-2007-3851
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 8 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-3851
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.0
|
MEDIUM | AV:L/AC:H/Au:S/C:C/I:C/A:C |
1.5
|
10.0
|
NIST |
CWE ids for CVE-2007-3851
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-3851
-
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.2
404: File not found
- http://www.redhat.com/support/errata/RHSA-2007-0705.html
-
https://issues.rpath.com/browse/RPL-1620
- http://www.novell.com/linux/security/advisories/2007_53_kernel.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:105
- http://www.ubuntu.com/usn/usn-510-1
- http://www.ubuntu.com/usn/usn-509-1
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11196
- http://www.debian.org/security/2007/dsa-1356
- http://www.novell.com/linux/security/advisories/2007_51_kernel.html
-
http://www.vupen.com/english/advisories/2007/2854
-
http://www.securityfocus.com/bid/25263
Products affected by CVE-2007-3851
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*When used together with: Intel » I915 Chipset