cpe:/a:badblue:badblue:2.72b CVE-2007-6377 2007-12-14T20:46:00.000-05:00 2017-09-28T21:29:54.237-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-12-17T13:19:00.000-05:00 BUGTRAQ 20071210 Multiple vulnerabilities in BadBlue 2.72b BID 26803 SECUNIA 28031 SREASON 3448 OSVDB 42416 EXPLOIT-DB 4784 VUPEN ADV-2007-4160 MISC http://aluigi.altervista.org/adv/badblue-adv.txt MISC http://aluigi.altervista.org/poc/badbluebof.txt Stack-based buffer overflow in the PassThru functionality in ext.dll in BadBlue 2.72b and earlier allows remote attackers to execute arbitrary code via a long query string.