Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4941

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2007-4941
Last Modified 15 Nov 2008 01:59:08
Published 18 Sep 2007 03:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4941

Summary

KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.

Vulnerable Systems

Application

  • Kde Kmplayer 2.9.3.1210


References

XF - kmplayer-avi-dos(36585)

MISC - http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt

BID - 25651

BUGTRAQ - 20070912 CAL-20070912-1 Multiple vendor produce handling AVI file vulnerabilities

OSVDB - 45939

SREASON - 3144


Last Updated: 27 May 2016 10:46:01