CVE-2007-2835

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2007-2835

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2007-2835.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2007-2835

Downstream

DEBIAN-CVE-2007-2835

DSA-1328-1

Published

2007-07-03T01:30:00Z

Modified

2025-08-09T19:01:27Z

Summary

[none]

Details

Multiple stack-based buffer overflows in (1) CCEpinyin.c and (2) xlpinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable.

References

http://secunia.com/advisories/25910
http://secunia.com/advisories/25912
http://www.debian.org/security/2007/dsa-1328
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431336
http://osvdb.org/37794
http://www.securityfocus.com/bid/24719
https://exchange.xforce.ibmcloud.com/vulnerabilities/35382

CVE-2007-2835

Affected packages