CVE-2008-0064 Information

Description

Stack-based buffer overflow in Pierre-emmanuel Gougelet (1) XnView 1.91 and 1.92 (2) NConvert 4.85 and (3) libgfl280.dll in GFL SDK 2.870 for Windows allows user-assisted remote attackers to execute arbitrary code via a crafted Radiance RGBE (.hdr) file.

Reference

http://secunia.com/advisories/28326 http://secunia.com/advisories/28710 http://secunia.com/secunia_research/2008-1/advisory http://www.securityfocus.com/bid/27514 http://www.vupen.com/english/advisories/2008/0328 http://www.vupen.com/english/advisories/2008/0329