CVE-2007-2835

EPSS 0.05% · P16 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-2835

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple stack-based buffer overflows in (1) CCE_pinyin.c and (2) xl_pinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Unicon-imc2环境变量本地缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

unicon-imc2是Debian操作系统中所使用的中文输入法库。 unicon-imc2在使用环境变量数据时存在缓冲区溢出漏洞，本地攻击者可能利用此漏洞提升自己的权限。 unicon-imc2库没有安全地使用HOME环境变量，如果用户使用了链接到该函数库的应用程序的话就可能触发缓冲区溢出，导致以root用户权限执行任意指令。漏洞代码位于/unicon/ImmModules/cce/CCE_pinyin.c文件中： static int IMM_Flush () { char name[256]; sp

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-2835

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-2835

请登录查看更多情报信息。

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431336x_refsource_MISC
http://www.securityfocus.com/bid/24719vdb-entryx_refsource_BID
http://osvdb.org/37794vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/25910third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25912third-party-advisoryx_refsource_SECUNIA
[SECURITY] [DSA 1328-1] New unicon-imc2 packages fix buffer overflowvendor-advisoryx_refsource_DEBIAN
https://exchange.xforce.ibmcloud.com/vulnerabilities/35382vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2007-2835

Same Patch Batch · n/a · 2007-07-03 · 46 CVEs total

CVE-2007-3523		XCMS 目录遍历漏洞
CVE-2007-3526		Buddy Zone SQL注入漏洞
CVE-2007-3528		Disk ARchive Blowfish-CBC加密实现IV冲突漏洞
CVE-2007-3511		Mozilla FireFox OnKeyDown事件文件上传漏洞
CVE-2007-3512		Lhaca File Archiver 缓冲区溢出漏洞
CVE-2007-3513		Linux Kernel USBLCD内存耗尽拒绝服务漏洞
CVE-2007-3514		Apple Safari 跨域漏洞
CVE-2007-2838		GSAMBAD 不安全临时文件创建漏洞
CVE-2007-3530		PHPDirector 权限漏洞
CVE-2007-3524		Ripe Website Manager 多个文件包含漏洞
CVE-2007-3525		Ripe Website Manager 远程攻击漏洞
CVE-2007-3522		sPHPell 多个文件包含漏洞
CVE-2007-3521		ArcadeBuilder Game Portal Manager SQL注入漏洞
CVE-2007-3520		Easybe SQL注入漏洞
CVE-2007-3519		phpEventCalendar SQL注入漏洞
CVE-2007-3518		HispaH YouTube Clone Script SQL注入漏洞
CVE-2007-3517		Claroline 跨站脚本漏洞
CVE-2007-3516		Gorki Online Santrac Sitesi 跨站脚本漏洞
CVE-2007-3515		TotalCalendar View_Event Script SQL注入漏洞
CVE-2007-2837		Fireflier-Server 不安全临时文件创建漏洞

Showing top 20 of 46 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-2835

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2007-2835

I. Basic Information for CVE-2007-2835

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-2835

III. Intelligence Information for CVE-2007-2835

Same Patch Batch · n/a · 2007-07-03 · 46 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2007-2835

Leave a comment