Vulnerabilities (CVE)

Filtered by vendor Chilkat Software Subscribe
Filtered by product Chilkat Xml Activex Control
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-4343 1 Chilkat Software 1 Chilkat Xml Activex Control 2024-11-21 9.3 HIGH N/A
The Chilkat XML ChilkatUtil.CkData.1 ActiveX control (ChilkatUtil.dll) 3.0.3.0 and earlier allows remote attackers to create, overwrite, and modify arbitrary files for execution via a call to the (1) SaveToFile, (2) SaveToTempFile, or (3) AppendBinary method. NOTE: this issue might only be exploitable in limited environments or non-default browser settings. NOTE: this can be leveraged for remote code execution by accessing files using hcp:// URLs.