Description
In mupen64plus v2.6.0 there is an array overflow vulnerability in the write_rdram_regs and write_rdram_regs functions, which enables executing arbitrary commands on the host machine.
References
github.com/...4plus-core/blob/2.6.0/src/device/rdram/rdram.c
github.com/...plus-core/blob/master/src/device/rdram/rdram.h
github.com/...plus-core/blob/master/src/device/rdram/rdram.h
github.com/Giles-one/mupen64plusEscape/tree/main/BUG1
gist.github.com/Giles-one/f4ea405c2a26000bb4ff4cfb9622be49
