| Title | mupen64plus.org mupen64plus <= 2.6.0 Integer Overflow to Buffer Overflow |
|---|
| Description | Mupen64Plus is a cross-platform, plugin-based N64 emulator that can accurately run many games. It includes four MIPS R4300 CPU emulators, a dynamic recompilation engine that supports 32-bit x86 and 64-bit amd64 systems, and plugins for audio, graphics rendering, signal co-processors, and input.
The Mupen64Plus emulator has an integer overflow vulnerability in its write_is_viewer function. An attacker can exploit this vulnerability by injecting malicious code into a game's ROM package, allowing them to escape the emulator and achieve arbitrary code execution on the host machine.
|
|---|
| Source | ⚠️ https://github.com/Giles-one/mupen64plusEscape/tree/main/BUG10 |
|---|
| User | GangYang Li (UID 89264) |
|---|
| Submission | 08/20/2025 17:01 (10 months ago) |
|---|
| Moderation | 08/29/2025 13:01 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 321900 [Mupen64Plus up to 2.6.0 is_viewer.c write_is_viewer integer overflow] |
|---|
| Points | 20 |
|---|