VYPR
Vendor

Chilkatsoft

Products
7
CVEs
8
Across products
8
Status
Private

Products

7

Recent CVEs

8
  • CVE-2024-26329MedApr 5, 2024
    risk 0.40cvss 6.2epss 0.00

    Chilkat before v9.5.0.98, allows attackers to obtain sensitive information via predictable PRNG in ChilkatRand::randomBytes function.

  • CVE-2008-4343Sep 30, 2008
    risk 0.04cvss epss 0.09

    The Chilkat XML ChilkatUtil.CkData.1 ActiveX control (ChilkatUtil.dll) 3.0.3.0 and earlier allows remote attackers to create, overwrite, and modify arbitrary files for execution via a call to the (1) SaveToFile, (2) SaveToTempFile, or (3) AppendBinary method. NOTE: this issue…

  • CVE-2008-1647Apr 2, 2008
    risk 0.04cvss epss 0.07

    The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, which allows remote attackers to overwrite arbitrary files. NOTE: some of these…

  • CVE-2008-7022Aug 21, 2009
    risk 0.03cvss epss 0.05

    Insecure method vulnerability in ChilkatMail_v7_9.dll in the Chilkat Software IMAP ActiveX control (ChilkatMail2.ChilkatMailMan2.1) allows remote attackers to execute arbitrary programs via the LoadXmlEmail method.

  • CVE-2008-6959Aug 12, 2009
    risk 0.03cvss epss 0.06

    Insecure method vulnerability in the Chilkat Socket ActiveX control (ChilkatSocket.ChilkatSocket.1) in ChilkatSocket.dll 2.3.1.1 allows remote attackers to overwrite arbitrary files via the SaveLastError method. NOTE: this might be related to CVE-2008-1647.

  • CVE-2008-4584Oct 15, 2008
    risk 0.03cvss epss 0.05

    Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method.

  • CVE-2008-4583Oct 15, 2008
    risk 0.03cvss epss 0.06

    Insecure method vulnerability in the Chilkat FTP 2.0 ActiveX component (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname in the SavePkcs8File method.

  • CVE-2007-4252Aug 8, 2007
    risk 0.03cvss epss 0.02

    Absolute path traversal vulnerability in a certain ActiveX control in CkString.dll 1.1 and earlier in CHILKAT ASP String allows remote attackers to create or overwrite arbitrary files via a full pathname in the first argument to the SaveToFile method, a different vulnerability…