Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insecure method vulnerability in the ChilkatCrypt2.ChilkatCrypt2.1 ActiveX control (ChilkatCrypt2.dll 4.3.2.1) in Chilkat Crypt ActiveX Component allows remote attackers to create and overwrite arbitrary files via the WriteFile method. NOTE: this could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Chilkat Crypt ActiveX控件'ChilkatCrypt2.dll'任意文件覆盖漏洞
Vulnerability Description
ChilkatCrypt2.ChilkatCrypt2.1 ActiveX是一个控件。 ChilkatCrypt2.dll ActiveX控件(进程ID为ChilkatCrypt2.ChilkatCrypt2.1)没有安全地调用WriteFile()方式: Function WriteFile ( ByVal filename As String , ByVal binaryData As Variant )As Long 如果向filename传送了恶意参数的话,就可以保存或覆盖指定的文件;通过第二个b
CVSS Information
N/A
Vulnerability Type
N/A