Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the demux_nsf_send_headers function in src/demuxers/demux_nsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the copyright field always has a safe length
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
xine-lib NES声音格式解码器copyright字段栈溢出漏洞
Vulnerability Description
xine是一款免费的媒体播放器,支持多种格式。 xine播放器的demux_nfs.c文件中没有正确地验证媒体文件中的copyright字段: line 111: this->copyright = strdup(&header[0x4E]); line 189: char copyright[100]; line 208: sprintf(copyright, "(C) %s", this->copyright); 如果用户受骗打开了带有超长copyright字段的媒体文件的话,就可能触发栈溢出,导致执
CVSS Information
N/A
Vulnerability Type
N/A