Unrated severityNVD Advisory· Published Feb 2, 2007· Updated Apr 23, 2026

CVE-2007-0664

Description

thttpd before 2.25b-r6 in Gentoo Linux is started from the system root directory (/) by the Gentoo baselayout 1.12.6 package, which allows remote attackers to read arbitrary files.

Affected products

Acme/Thttpd
cpe:2.3:a:acme_labs:thttpd:*:*:*:*:*:*:*:*
Range: <=2.24

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.gentoo.org/show_bug.cginvdPatchVendor Advisory
secunia.com/advisories/24018nvdPatchVendor Advisory
www.gentoo.org/security/en/glsa/glsa-200701-28.xmlnvdPatchVendor Advisory
www.securityfocus.com/bid/22349nvdVendor Advisory
osvdb.org/31965nvd
packetstormsecurity.com/files/175949/m-privacy-TightGate-Pro-Code-Execution-Insecure-Permissions.htmlnvd
seclists.org/fulldisclosure/2023/Nov/13nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000