CVE-2008-4584

Chilkat Mail <7.8 - File Overwrite

Title source: llm

Description

Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method.

Exploits (2)

exploitdb WORKING POC VERIFIED

by callAX · htmlremotewindows

https://www.exploit-db.com/exploits/7594

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by darkl0rd · htmlremotewindows

https://www.exploit-db.com/exploits/5005

View Code ZIP pw:eip

References (4)

[Third Party Advisory] http://securityreason.com/securityalert/4424

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/27493

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/5005

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/40041

Scores

EPSS 0.0380

EPSS Percentile 88.1%

Details

Status published

Products (1)

chilkat_software/mail 7.8

Published Oct 15, 2008

Tracked Since Feb 18, 2026