CVE-2008-1647

ChilkatHttp <2.4.0.0 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-1647. PoCs published by shinnai.

AI-analyzed exploit summary This exploit leverages an arbitrary file overwrite vulnerability in ChilkatHttp ActiveX 2.3 by calling the SaveLastError method to write to a system file (system_.ini). The PoC is a simple HTML file with embedded VBScript.

Description

The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote attackers to overwrite arbitrary files. NOTE: some of these details are obtained from third party information.

Exploits (2)

exploitdb WORKING POC VERIFIED
by shinnai · htmlremotewindows
https://www.exploit-db.com/exploits/5338

This exploit leverages an arbitrary file overwrite vulnerability in ChilkatHttp ActiveX 2.3 by calling the SaveLastError method to write to a system file (system_.ini). The PoC is a simple HTML file with embedded VBScript.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: ChilkatHttp ActiveX 2.3
No auth needed
Prerequisites: Victim must open the malicious HTML file in a browser with ActiveX enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
htmlremotewindows
https://www.exploit-db.com/exploits/7594

This exploit leverages an arbitrary file creation vulnerability in ChilkatSocket.DLL (CVE-2008-1647) by invoking the SaveLastError method via an ActiveX control to write arbitrary data to a specified file path (e.g., c:\boot_.ini). The exploit is triggered via a simple HTML button click, demonstrating a trivial attack vector.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: ChilkatSocket.DLL (ChilkatFTP.dll v3.0.0.2)
No auth needed
Prerequisites: Victim must open the malicious HTML file in a browser with ActiveX enabled
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5338
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28546
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45988
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1050/references
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29581

Scores

EPSS 0.0596
EPSS Percentile 90.9%

Details

CWE
CWE-20
Status published
Products (1)
chilkat_software/chilkathttp_activex < 2.3.0.0
Published Apr 02, 2008
Tracked Since Feb 18, 2026