Vulnerabilities > Chilkat Software
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-10 | CVE-2008-5002 | Improper Input Validation vulnerability in Chilkat Software Chilkat Crypt Activex Control 2.1 Insecure method vulnerability in the ChilkatCrypt2.ChilkatCrypt2.1 ActiveX control (ChilkatCrypt2.dll 4.3.2.1) in Chilkat Crypt ActiveX Component allows remote attackers to create and overwrite arbitrary files via the WriteFile method. | 9.3 |
| 2008-10-15 | CVE-2008-4584 | Insecure Method vulnerability in Chilkat Software Mail 7.8 Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method. network chilkat-software | 6.8 |
| 2008-10-15 | CVE-2008-4583 | Insecure Method vulnerability in Chilkat Software FTP 2.0 Insecure method vulnerability in the Chilkat FTP 2.0 ActiveX component (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname in the SavePkcs8File method. | 7.5 |
| 2008-04-30 | CVE-2008-2017 | Path Traversal vulnerability in Chilkat Software Chicomas 2.0.4 Directory traversal vulnerability in Chilek Content Management System (aka ChiCoMaS) 2.0.4 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
| 2008-04-30 | CVE-2008-2016 | Code Injection vulnerability in Chilkat Software Chicomas 2.0.4 PHP remote file inclusion vulnerability in Chilek Content Management System (aka ChiCoMaS) 2.0.4 allows remote attackers to execute arbitrary PHP code via a URL in the lang parameter to the default URI under install/. | 7.5 |
| 2008-04-02 | CVE-2008-1647 | Improper Input Validation vulnerability in Chilkat Software Chilkathttp Activex The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote attackers to overwrite arbitrary files. | 9.3 |
| 2007-08-08 | CVE-2007-4252 | Unspecified vulnerability in Chilkat Software ASP String 1.1 Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability than CVE-2007-3633. network chilkat-software | 4.3 |
| 2007-07-10 | CVE-2007-3633 | Arbitrary File Overwrite vulnerability in Chilkat Software Chilkat ZIP Activex Control 12.4.2.0 Absolute path traversal vulnerability in the Chilkat Software Chilkat Zip ActiveX control in ChilkatZip2.dll 12.4.2.0 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the (1) SaveLastError method and probably the (2) WriteExe method. | 6.4 |