clock menu more-arrow no yes

Filed under:

Nvidia fixes Display Driver security gap allowing attackers to gain system admin access

New, comment

If you buy something from a Polygon link, Vox Media may earn a commission. See our ethics statement.

Graphics card producer Nvidia released an update for Nvidia Display Driver on Saturday correcting a recently discovered security vulnerability that allowed hackers to obtain "super-user" access to any system running the software, reports SecurityWeek.

The security update has passed Microsoft's hardware testing service for WHQL certification, making it an official driver version. All users running Nvidia GeForce graphics cards should download the new version immediately.

"The vulnerability allows a remote attacker with a valid domain account to gain super-user access to any desktop or laptop running the vulnerable service," CSO of security management and testing software company Rapid7 HD Moore told SecurityWeek.

"This flaw also allows an attacker (or rogue user) with a low-privileged account to gain super-access to their own system, but the real risk to enterprises is the remote vector," he added.

The driver update, version 310.90, also brings a number of other bug fixes and performance upgrades for games running on the GeForce 400/500/600 series GPUs, including Call of Duty: Black Ops 2 and Assassin's Creed 3.

The full list of notes for version 310.90 can be found on Nvidia's website.

Sign up for the newsletter Sign up for Patch Notes

A weekly roundup of the best things from Polygon