[NVIDIA] NVIDIA GPU DRIVER SECURITY WARNING - Page 6 - Overclock.net - An Overclocking Community

Forum Jump: 

[NVIDIA] NVIDIA GPU DRIVER SECURITY WARNING

Reply
 
Thread Tools
post #51 of 58 (permalink) Old 08-13-2019, 01:23 PM
Top kek
 
Join Date: Oct 2013
Location: Bulgaria , Sofia
Posts: 3,401
Rep: 113 (Unique: 66)
Quote: Originally Posted by xJumper View Post
If you have UPnP enabled on your router you are asking for ownage. Sadly most consumer grade routers or the ISP provided gateway modem/router combo have horrible defaults, horrible security, have firmware that's many years out of date, and ship out of box with many remote admin protocols, ports or what have you features like UPnP set to ON.





This is why you need to set your firewall to default deny out.
In todays age, UPnP is a must. Unless you know all of the 1000 ports that your apps use.

Previous Hardware:
Spoiler!
Desktop PC
(19 items)
CPU
AMD FX-8320
Motherboard
ASRock Fatal1ty 990FX Killer
GPU
Sapphire Nitro+ RX480
GPU
XFX RX470 Singlefan
GPU
MSI RX580 GamingX 4GB
RAM
Mushkin Redline 996996 2x4GB 2133Mhz
Hard Drive
Western Digital 160GB 7200RPM 8MB
Hard Drive
Maxtor 250GB 7200RPM 8MB
Hard Drive
Corsair Force LS
Hard Drive
WesternDigital Blue 500GB 7200RPM 16MB
Power Supply
Corsair TX850M
Cooling
ThermalTake Frio Silent 14
Case
ThermalTake View 27
Operating System
Windows 10 Enterprise 1607
Operating System
Linux Mint 17.3 Rosa
Monitor
AOC i2267FWH
Keyboard
Logitech K120
Mouse
Bloody V5
Audio
Corsair HS30 Raptor
▲ hide details ▲
ku4eto is offline  
Sponsored Links
Advertisement
 
post #52 of 58 (permalink) Old 08-13-2019, 03:07 PM
BOINC Cruncher
 
Diffident's Avatar
 
Join Date: Apr 2014
Location: Bawlmer, MD
Posts: 1,548
Rep: 98 (Unique: 66)
Quote: Originally Posted by ku4eto View Post
In todays age, UPnP is a must. Unless you know all of the 1000 ports that your apps use.

Not really, I've always had it off. It's mainly for peer-to-peer.

There is no need to open ports for your apps. If your firewall is set up correctly it will accept incoming communications for apps that currently have an outgoing connection and block all others. Enabling UPnP opens the door for accepting incoming connections without first establishing any outgoing communication.

Team Boinc! - Forum Folding War Team
Gentoo Linux - Telemetry Free Since 1999!
Washington Capitals 2018 Stanley Cup Champions
Boinc Desktop
(15 items)
CrunchAholic
(10 items)
NAS
(7 items)
CPU
AMD Ryzen 7 1700X
Motherboard
ASRock X370 Taichi
GPU
AMD Radeon VII
RAM
HyperX Predator
Hard Drive
Samsung 970 EVOPlus
Power Supply
EVGA 850 G2
Cooling
Watercool Heatkiller IV PRO AM4 CPU Block
Cooling
EKWB Coolstream XE 240 Radiator
Cooling
EKWB Coolstream PE 360 Radiator
Cooling
Watercool Heatkiller 150mm Tube Res
Case
Thermaltake View 31 Tempered Glass RGB Edition
Operating System
Gentoo Linux
Monitor
Alienware AW3418DW
Keyboard
Coolermaster Masterkeys Pro S
Mouse
Roccat Kone EMP
CPU
Intel Xeon E5-2670
CPU
Intel Xeon E5-2670
Motherboard
Asrock Rack EP2C602
GPU
EVGA 1070ti FTW
GPU
EVGA 1070ti FTW
RAM
64 GBs Samsung M939B1K70CHD-CH9 PC3-10600R
Hard Drive
Samsung HD322HJ
Power Supply
Corsair AX1200
Case
Rosewill RSV-L4000
Operating System
Gentoo Linux
CPU
i3-4130T
Motherboard
GIGABYTE GA-H97N-WIFI
RAM
CORSAIR CMX16GX3M2A1600C11
Hard Drive
Western Digital Red 10 TB x3
Hard Drive
Western Digital Red 8 TB
Case
Fractal Design Node 804
Operating System
Gentoo Linux
▲ hide details ▲


Diffident is offline  
post #53 of 58 (permalink) Old 08-14-2019, 01:53 AM
New to Overclock.net
 
battlenut's Avatar
 
Join Date: Feb 2007
Location: Yokosuka, Japan
Posts: 1,525
Rep: 58 (Unique: 52)
Quote: Originally Posted by speed_demon View Post
That was the regular driver. My only real option is to mod the drivers from what I can tell.

This is the error from the DCH driver. Clean install after DDU in safe mode has the same results.

Can you go to device manager and right click on the display adapter and and update drivers that way. Doing it this way only updates the driver not Nvidias' other software.

CPU: AMD Ryzen Threadripper 1950X Processor
Mobo: Asrock X399 Taichi
VGA: Asrock Phantom Gaming Radeon VII
RAM: G-Skill 3200 RipJaws F4-3200C16-16GVK
Storage: Samsung M.2 850 EVO 1TB
PSU: Seasonic Prime Ultra 1000 Platinum
Cooling: HeatKiller For CPU & Bykski for GPU


battlenut is offline  
Sponsored Links
Advertisement
 
post #54 of 58 (permalink) Old 08-14-2019, 07:03 AM
Overclocker in training
 
ThrashZone's Avatar
 
Join Date: Apr 2017
Posts: 7,021
Rep: 62 (Unique: 48)
Hi,
I usually just use nvslimmer on drivers before install
Still use custom install
https://forums.guru3d.com/threads/nv...tility.423072/

Vaper
(4 items)
CPU
i9-9940x With evo and koolance vrm water blocks
Motherboard
ASUS x299 TUF Mark 2
GPU
Titan Xp with copper Water Block
RAM
Trident Z 3600C16 4x8gb's b-die default timings 16-16-16-36
Hard Drive
Samsung 970 Evo Plus 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Optical Drive
LG Blu-Ray WH16NS40
Power Supply
evga 1200-P2
Cooling
2-280GTX Black Ice Nemesis rads with D5 pump-res combo and D5 top before and after rads.
Case
corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 pro & 10 pro Win-7 Primary os.
Monitor
ASUS VG248QE 24" 144Hz
Keyboard
Logitech G910 Orion spectrum
Mouse
Redragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Audio
Built in realtek with Insignia 2.0 soundbar HSB318
CPU
i7-5930k with evo and koolance vrm water blocks
Motherboard
X99 Sabertooth
GPU
EVGA 1080ti FTW3 with Water block
RAM
Trident-Z 3200C14 4x8gb's b-die default timings 14-14-14-34
Hard Drive
Samsung 970 Evo 500gb M.2 for os/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Power Supply
EVGA 1000-P2
Cooling
2-240 GTX Black Ice Nemesis rads/ D5 pump-res combo and D5 top before and after rads.
Case
Corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 and 10 pro Win-7 Primary os.
Monitor
AOC G2460PG 24"G-Sync 144Hz
Mouse
Red Dragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Hard Drive
eLeaf MELO-3 4ml
Power Supply
SE US18650VTC6 3120mAh 30A 3.6V 18650 Li-ion Battery - GREENx4
Case
ANGIS Legion MOD 200w Geek Vape
Operating System
VapeWild RazzleBerry 50-50-0mg nic
▲ hide details ▲
ThrashZone is offline  
post #55 of 58 (permalink) Old 08-14-2019, 08:14 AM
New to Overclock.net
 
Join Date: Jun 2008
Location: Wilts, U.K.
Posts: 3,574
Rep: 454 (Unique: 386)
Quote: Originally Posted by ThrashZone View Post
Hi,
I usually just use nvslimmer on drivers before install
Still use custom install
https://forums.guru3d.com/threads/nv...tility.423072/
It seems to be true that if you're happy downloading and running compiled apps from random forum users Dropbox's that don't show the source code or any method at all to check or verify then you actually are at risk from privileged escalation?


Darren9 is offline  
post #56 of 58 (permalink) Old 08-14-2019, 11:18 AM
Kill Confirmed
 
speed_demon's Avatar
 
Join Date: Nov 2006
Posts: 1,297
Rep: 75 (Unique: 62)
You always have to look at what a person's motivation might be for providing their time and effort to create a piece of software. And then to go a step further and provide their work for people to download and use. Remember they probably don't make money off of it, but they could if it was hosted on an ad supported page.

It could be a simple as they want to give back to the community, or it could be something nefarious like a backdoor for a coin mining botnet.


speed_demon is offline  
post #57 of 58 (permalink) Old 08-14-2019, 12:11 PM
Old to Overclock.net
 
Join Date: Jan 2008
Posts: 2,048
Rep: 116 (Unique: 101)
Quote: Originally Posted by ku4eto View Post
In todays age, UPnP is a must. Unless you know all of the 1000 ports that your apps use.
Running the out firewall in whitelist mode, I've only had to whitelist maybe like 10-15 ports for everything to work; not exactly difficult... CTRL+ATL+T, netstat, su ufw allow out XX/TCP/UDP

UPnP is a widely known, very very very exploitable protocol.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲


xJumper is offline  
post #58 of 58 (permalink) Old 08-15-2019, 11:04 AM
Overclocker in training
 
ThrashZone's Avatar
 
Join Date: Apr 2017
Posts: 7,021
Rep: 62 (Unique: 48)
Quote: Originally Posted by Darren9 View Post
It seems to be true that if you're happy downloading and running compiled apps from random forum users Dropbox's that don't show the source code or any method at all to check or verify then you actually are at risk from privileged escalation?
Hi,
Windows 10 who cares

Vaper
(4 items)
CPU
i9-9940x With evo and koolance vrm water blocks
Motherboard
ASUS x299 TUF Mark 2
GPU
Titan Xp with copper Water Block
RAM
Trident Z 3600C16 4x8gb's b-die default timings 16-16-16-36
Hard Drive
Samsung 970 Evo Plus 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Optical Drive
LG Blu-Ray WH16NS40
Power Supply
evga 1200-P2
Cooling
2-280GTX Black Ice Nemesis rads with D5 pump-res combo and D5 top before and after rads.
Case
corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 pro & 10 pro Win-7 Primary os.
Monitor
ASUS VG248QE 24" 144Hz
Keyboard
Logitech G910 Orion spectrum
Mouse
Redragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Audio
Built in realtek with Insignia 2.0 soundbar HSB318
CPU
i7-5930k with evo and koolance vrm water blocks
Motherboard
X99 Sabertooth
GPU
EVGA 1080ti FTW3 with Water block
RAM
Trident-Z 3200C14 4x8gb's b-die default timings 14-14-14-34
Hard Drive
Samsung 970 Evo 500gb M.2 for os/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Power Supply
EVGA 1000-P2
Cooling
2-240 GTX Black Ice Nemesis rads/ D5 pump-res combo and D5 top before and after rads.
Case
Corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 and 10 pro Win-7 Primary os.
Monitor
AOC G2460PG 24"G-Sync 144Hz
Mouse
Red Dragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Hard Drive
eLeaf MELO-3 4ml
Power Supply
SE US18650VTC6 3120mAh 30A 3.6V 18650 Li-ion Battery - GREENx4
Case
ANGIS Legion MOD 200w Geek Vape
Operating System
VapeWild RazzleBerry 50-50-0mg nic
▲ hide details ▲
ThrashZone is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off