CVE-2007-0476

EPSS 0.07% · P21 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-0476

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The gencert.sh script, when installing OpenLDAP before 2.1.30-r10, 2.2.x before 2.2.28-r7, and 2.3.x before 2.3.30-r2 as an ebuild in Gentoo Linux, does not create temporary directories in /tmp securely during emerge, which allows local users to overwrite arbitrary files via a symlink attack.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenLDAP Gentoo ' GenCert.SH ' 任意文件重写漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

当在Gentoo Linux中安装OpenLDAP 2.1.30-r10之前版本，2.2.28-r7之前的2.2.x，2.3.30-r2之前的2.3.x时，gencert.sh脚本没有在/tmp中安全的创建临时目录，这使得本地用户可以借助一个symlink攻击，重写任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-0476

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-0476

请登录查看更多情报信息。

http://secunia.com/advisories/23881third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/31617vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/22195vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2007/0305vdb-entryx_refsource_VUPEN
http://security.gentoo.org/glsa/glsa-200701-19.xmlvendor-advisoryx_refsource_GENTOO
https://nvd.nist.gov/vuln/detail/CVE-2007-0476

Same Patch Batch · n/a · 2007-01-25 · 28 CVEs total

CVE-2007-0479		Cisco IOS特制TCP报文远程拒绝服务漏洞
CVE-2007-0492		webSPELL 'gallery.php' 多个SQL注入漏洞
CVE-2007-0491		Sky GUNNING MySpeach 'up.php' 远程文件包含漏洞
CVE-2007-0490		Open-Realty 'index.php' 全路径信息泄露径漏洞
CVE-2007-0489		VisoHotlink 'Functions.Visohotlink.PHP' 远程文件包含漏洞
CVE-2007-0488		Quidway R1600路由器2500E-003固件拒绝服务攻击漏洞
CVE-2007-0487		FreeForum 'index.php' PHP远程文件包含漏洞
CVE-2007-0486		Openads 多个PHP远程文件包含漏洞
CVE-2007-0485		WebChat 'defines.php' PHP远程文件包含漏洞
CVE-2007-0484		Indiscripts Enthusiast 多个SQL注入漏洞
CVE-2007-0483		Indiscripts Enthusiast 多个跨站攻击漏洞
CVE-2007-0482		Sun Ray Server管理GUI管理员口令泄露漏洞
CVE-2007-0481		Cisco IOS畸形IPv6路由头结构处理远程拒绝服务漏洞
CVE-2007-0480		Cisco IOS畸形IP选项远程拒绝服务及代码执行漏洞
CVE-2007-0495		PhpSherpa 'config.inc.php'远程文件包含漏洞
CVE-2007-0478		Apple Mac OS X中HTML标题代码漏洞
CVE-2007-0477		Openads 'admin-search.php' 跨站脚本攻击漏洞
CVE-2007-0494		ISC BIND DNSSEC验证远程拒绝服务漏洞
CVE-2007-0493		ISC BIND 安全漏洞
CVE-2007-0503		Sun Solaris 'kcms_calibrate' 本地任意指令执行漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-0476

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2007-0476

I. Basic Information for CVE-2007-0476

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-0476

III. Intelligence Information for CVE-2007-0476

Same Patch Batch · n/a · 2007-01-25 · 28 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2007-0476

Leave a comment