Published: 02/04/2008 Updated: 29/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and previous versions in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote malicious users to overwrite arbitrary files. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
chilkat software chilkathttp activex

-------------------------------------------------------------------- ChilkatHttp ActiveX 23 Arbitrary Files Overwrite url: wwwchilkatsoftcom Author: shinnai mail: shinnai[at]autistici[dot]org site: shinnaialtervistaorg This was written for educational purpose Use it at your own risk Author will be not responsible for any dama ...

<html> <title>ChilkatSocketDLL Arbitrary File Creation ChilkatFTPdll v3002</title><br><br> <body> <h3>ChilkatSocketDLL Arbitrary File Creation ChilkatFTPdll v3002 Arbitrary Data Write Exploit</h3> <!c0d3d by callAX *-*-*-*-* 0wN thE b0x p4l *_*-*_*_* Greetings to str0ke and Fr0git0--&gt ...

CWE-20 http://www.shinnai.altervista.org/index.php?mod=02_Forum&group=Security&argument=Remote_performed_exploits&topic=1207033569.ff.php http://secunia.com/advisories/29581 http://www.securityfocus.com/bid/28546 http://www.vupen.com/english/advisories/2008/1050/references https://exchange.xforce.ibmcloud.com/vulnerabilities/45988 https://www.exploit-db.com/exploits/5338 https://nvd.nist.gov https://www.exploit-db.com/exploits/5338/

CVE-2008-1647

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect