VYPR
Unrated severityNVD Advisory· Published May 14, 2007· Updated Jun 16, 2026

CVE-2007-2666

CVE-2007-2666

Description

Stack-based buffer overflow in LexRuby.cxx (SciLexer.dll) in Scintilla 1.73, as used by notepad++ 4.1.1 and earlier, allows user-assisted remote attackers to execute arbitrary code via certain Ruby (.rb) files with long lines. NOTE: this was originally reported as a vulnerability in notepad++.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:notepad\+\+:notepad\+\+:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:notepad\+\+:notepad\+\+:*:*:*:*:*:*:*:*range: <=4.1.1
    • (no CPE)range: <=4.1.1
  • cpe:2.3:a:scintilla:scintilla:1.73:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:scintilla:scintilla:1.73:*:*:*:*:*:*:*
    • (no CPE)range: = 1.73

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.