cpe:/a:notepad%2b%2b:notepad%2b%2b:4.1.1 cpe:/a:scintilla:scintilla:1.73 CVE-2007-2666 2007-05-14T19:19:00.000-04:00 2017-10-10T21:32:19.973-04:00 7.6 NETWORK HIGH NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2007-05-16T21:27:00.000-04:00 ALLOWS_ADMIN_ACCESS BUGTRAQ 20070513 notepad++[v4.1]: (win32) ruby file processing buffer overflow exploit. BUGTRAQ 20070523 Re: notepad++[v4.1]: (win32) ruby file processing buffer overflow exploit. BID 23961 SECUNIA 25245 SECUNIA 25327 OSVDB 36007 EXPLOIT-DB 3912 VUPEN ADV-2007-1794 VUPEN ADV-2007-1867 CONFIRM http://scintilla.cvs.sourceforge.net/scintilla/scintilla/src/LexRuby.cxx?view=log#rev1.13 XF notepadplus-rb-bo(34269) XF scintilla-rb-bo(34372) Stack-based buffer overflow in LexRuby.cxx (SciLexer.dll) in Scintilla 1.73, as used by notepad++ 4.1.1 and earlier, allows user-assisted remote attackers to execute arbitrary code via certain Ruby (.rb) files with long lines. NOTE: this was originally reported as a vulnerability in notepad++.