Vulnerabilities > CVE-2007-4941 - Resource Management Errors vulnerability in KDE Kmplayer
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | KMPlayer 2.9.3.1214 Multiple Remote Denial of Service Vulnerabilities. CVE-2007-4941. Dos exploit for linux platform |
id | EDB-ID:30580 |
last seen | 2016-02-03 |
modified | 2007-09-12 |
published | 2007-09-12 |
reporter | Code Audit Labs |
source | https://www.exploit-db.com/download/30580/ |
title | KMPlayer 2.9.3.1214 - Multiple Remote Denial of Service Vulnerabilities |
References
- http://osvdb.org/45939
- http://securityreason.com/securityalert/3144
- http://www.securityfocus.com/archive/1/479222/100/0/threaded
- http://www.securityfocus.com/bid/25651
- http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36585