CVE-2008-1964

Name of the Vulnerable Software and Affected Versions xine-lib (affected versions not specified)

Description The issue is related to a stack-based buffer overflow in the demux nsf send headers function, located in src/demuxers/demux nsf.c. This overflow can be triggered by a long copyright field in an NSF header in an NES Sound file. However, a third party claims that the copyright field always has a safe length, which may affect the exploitability of this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.