Vulnonym.org

CVE-2008-1964 - Entomological Slav

Description

DISPUTED Stack-based buffer overflow in the demux_nsf_send_headers function in src/demuxers/demux_nsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file a different issue than CVE-2008-1878. NOTE: a third party claims that the copyright field always has a safe length.

Reference

http://www.securityfocus.com/bid/28908 http://www.securityfocus.com/archive/1/491274/100/0/threaded http://www.securityfocus.com/archive/1/491248/100/0/threaded