Vulnerability Database

323,357

Total vulnerabilities in the database

CVE-2007-4941

KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.

Published: Sep 18, 2007
Updated: Nov 9, 2025
CVE: CVE-2007-4941
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
kde / kmplayer	-	2.9.3.1210.x

http://osvdb.org/45939
http://securityreason.com/securityalert/3144
http://www.securityfocus.com/archive/1/479222/100/0/threaded
http://www.securityfocus.com/bid/25651
http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/36585

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo