CVE-2007-2666

Scintilla 1.73 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in LexRuby.cxx (SciLexer.dll) in Scintilla 1.73, as used by notepad++ 4.1.1 and earlier, allows user-assisted remote attackers to execute arbitrary code via certain Ruby (.rb) files with long lines. NOTE: this was originally reported as a vulnerability in notepad++.

Exploits (1)

exploitdb WORKING POC VERIFIED

by vade79 · clocalwindows_x86

https://www.exploit-db.com/exploits/3912

View Code ZIP pw:eip

References (12)

[Product] http://scintilla.cvs.sourceforge.net/scintilla/scintilla/src/LexRuby.cxx?view=log#rev1.13

[Vendor Advisory] http://secunia.com/advisories/25245

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/1794

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/1867

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34269

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34372

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/468529/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/469348/100/100/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23961

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3912

[Third Party Advisory, VDB Entry] http://osvdb.org/36007

[Third Party Advisory] http://secunia.com/advisories/25327

Scores

EPSS 0.1951

EPSS Percentile 95.4%

Details

CWE

CWE-119

Status published

Products (2)

notepad\+\+/notepad\+\+ < 4.1.1

scintilla/scintilla 1.73

Published May 14, 2007

Tracked Since Feb 18, 2026