CVE-2016-5852
First published: Tue Nov 08 2016(Updated: )
For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-5852 ID is for the NVTray Plugin unquoted service path.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA GeForce Experience | <=- | |
| NVIDIA GeForce 910M | ||
| NVIDIA GeForce 920M | ||
| NVIDIA GeForce 920mx | ||
| NVIDIA GeForce 930M | ||
| NVIDIA GeForce 930MX | ||
| NVIDIA GeForce 940M | ||
| NVIDIA GeForce 940MX | ||
| NVIDIA GeForce 945M | ||
| NVIDIA GeForce GT 710 | ||
| NVIDIA GeForce GT 730 | ||
| NVIDIA GeForce GTX 1050 | ||
| NVIDIA GeForce GTX 1060 | ||
| NVIDIA GeForce GTX 1070 | ||
| NVIDIA GeForce GTX 1080 | ||
| Nvidia GeForce GTX 950M | ||
| Nvidia GeForce GTX 960M Firmware | ||
| NVIDIA GeForce GTX 965M | ||
| NVIDIA NVS 310 | ||
| NVIDIA NVS 315 | ||
| NVIDIA | ||
| NVIDIA | ||
| Nvidia Quadro K1200 | ||
| NVIDIA Quadro K420 | ||
| Nvidia Quadro K620 | ||
| Nvidia Quadro M1000M | ||
| NVIDIA Quadro M2000 | ||
| NVIDIA Quadro M2000M | ||
| NVIDIA Quadro M3000M | ||
| NVIDIA Quadro M4000 | ||
| NVIDIA Quadro M4000M | ||
| NVIDIA Quadro M5000 | ||
| NVIDIA Quadro M5000M | ||
| NVIDIA Quadro M500M | ||
| NVIDIA Quadro M5500 | ||
| NVIDIA Quadro M6000 | ||
| NVIDIA Quadro M600M | ||
| NVIDIA Quadro P5000 | ||
| NVIDIA Quadro P6000 | ||
| NVIDIA Titan X |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-5852?
The severity of CVE-2016-5852 is considered to be high due to potential exploitability in unquoted service paths.
How do I fix CVE-2016-5852?
To fix CVE-2016-5852, ensure that all service paths are properly quoted in the service configuration.
Which software is affected by CVE-2016-5852?
CVE-2016-5852 affects various NVIDIA products, including NVIDIA GeForce Experience and related graphical services.
What can an attacker do with CVE-2016-5852?
An attacker exploiting CVE-2016-5852 could potentially execute malicious code with elevated privileges on the affected system.
Is there a patch available for CVE-2016-5852?
Yes, NVIDIA has released updates addressing the vulnerabilities associated with CVE-2016-5852.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/last-modified-date
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/nvidia
- canonical/nvidia geforce experience
- version/nvidia geforce experience/-
- canonical/nvidia geforce 910m
- canonical/nvidia geforce 920m
- canonical/nvidia geforce 920mx
- canonical/nvidia geforce 930m
- canonical/nvidia geforce 930mx
- canonical/nvidia geforce 940m
- canonical/nvidia geforce 940mx
- canonical/nvidia geforce 945m
- canonical/nvidia geforce gt 710
- canonical/nvidia geforce gt 730
- canonical/nvidia geforce gtx 1050
- canonical/nvidia geforce gtx 1060
- canonical/nvidia geforce gtx 1070
- canonical/nvidia geforce gtx 1080
- canonical/nvidia geforce gtx 950m
- canonical/nvidia geforce gtx 960m firmware
- canonical/nvidia geforce gtx 965m
- canonical/nvidia nvs 310
- canonical/nvidia nvs 315
- canonical/nvidia
- canonical/nvidia quadro k1200
- canonical/nvidia quadro k420
- canonical/nvidia quadro k620
- canonical/nvidia quadro m1000m
- canonical/nvidia quadro m2000
- canonical/nvidia quadro m2000m
- canonical/nvidia quadro m3000m
- canonical/nvidia quadro m4000
- canonical/nvidia quadro m4000m
- canonical/nvidia quadro m5000
- canonical/nvidia quadro m5000m
- canonical/nvidia quadro m500m
- canonical/nvidia quadro m5500
- canonical/nvidia quadro m6000
- canonical/nvidia quadro m600m
- canonical/nvidia quadro p5000
- canonical/nvidia quadro p6000
- canonical/nvidia titan x