Absolute path traversal vulnerability in the Chilkat Software Chilkat Zip ActiveX control in ChilkatZip2.dll 12.4.2.0 allows remote malicious users to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveLastError method and probably the (2) WriteExe method.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
chilkat software chilkat zip activex control 12.4.2.0 |