Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 12:51:07 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1244065101&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiledesc%2Fchilkat_crypt_writefile.rb.txt.html%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1244065101.1338209467.1338209467.1338209467.1%3B%2B__utmz%3D32867617.1338209467.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/86917/chilkat_crypt_writefile.rb.txt http://packetstormsecurity.org/files/86917/chilkat_crypt_writefile.rb.txt http://packetstormsecurity.org/files/86917/Chilkat-Crypt-ActiveX-WriteFile-Unsafe-Method.html Fri, 05 Mar 2010 03:53:51 GMT This Metasploit module allows attackers to execute code via the 'WriteFile' unsafe method of Chilkat Software Inc's Crypt ActiveX control. This exploit is based on shinnai's exploit that uses an hcp:// protocol URI to execute our payload immediately. However, this method requires that the victim user be browsing with Administrator. Additionally, this method will not work on newer versions of Windows. NOTE: This vulnerability is still unpatched. The latest version of Chilkat Crypt at the time of this writing includes ChilkatCrypt2.DLL version 4.4.4.0.