OpenMPT Multiple Remote Code Execution Vulnerabilities

OpenMPT Multiple Remote Code Execution Vulnerabilities

OpenMPT is prone to multiple remote code-execution vulnerabilities because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

Exploiting these issues allows remote attackers to execute arbitrary machine code in the context of affected servers. This facilitates the remote compromise of affected computers.

These versions are affected:

1.17.02.43 and earlier
SVN versions 157 and earlier.