Vulnerabilities > CVE-2008-4584 - Insecure Method vulnerability in Chilkat Software Mail 7.8

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

chilkat-software

exploit available

NVD

Published: 2008-10-15

Updated: 2017-09-29

Summary

Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method.

Vulnerable Configurations

Part	Description	Count
Application	Chilkat_Software Chilkat Software Mail 7.8	1

Exploit-Db

description	Chilkat FTP ActiveX (SaveLastError) Insecure Method Exploit. CVE-2008-1647,CVE-2008-4584. Remote exploit for windows platform
id	EDB-ID:7594
last seen	2016-02-01
modified	2008-12-28
published	2008-12-28
reporter	callAX
source	https://www.exploit-db.com/download/7594/
title	Chilkat FTP ActiveX SaveLastError Insecure Method Exploit

description	Chilkat Mail ActiveX 7.8 (ChilkatCert.dll) Insecure Method Exploit. CVE-2008-4584. Remote exploit for windows platform
file	exploits/windows/remote/5005.html
id	EDB-ID:5005
last seen	2016-01-31
modified	2008-01-29
platform	windows
port
published	2008-01-29
reporter	darkl0rd
source	https://www.exploit-db.com/download/5005/
title	Chilkat Mail ActiveX 7.8 ChilkatCert.dll Insecure Method Exploit
type	remote

Summary

Vulnerable Configurations

Exploit-Db

References