Darkl0Rd

**Name of the Vulnerable Software and Affected Versions** Chilkat FTP 2.0 ActiveX component (ChilkatCert.dll) **Description** The issue is related to an insecure method in the Chilkat FTP 2.0 ActiveX component, which allows remote attackers to overwrite arbitrary files. This is achieved by providing a full pathname in the `SavePkcs8File` method. **Recommendations** For Chilkat FTP 2.0 ActiveX component, consider disabling the `SavePkcs8File` method until a patch is available to prevent remote attackers from overwriting arbitrary files.

**Name of the Vulnerable Software and Affected Versions** Chilkat Mail version 7.8 **Description** The issue allows remote attackers to overwrite arbitrary files by providing a full pathname to the `SaveLastError` method. This method is part of the ChilkatCert.dll ActiveX control. **Recommendations** For version 7.8, consider disabling the `SaveLastError` method until a patch is available to prevent remote attackers from overwriting arbitrary files.

**Name of the Vulnerable Software and Affected Versions** MailBee Objects version 5.5 **Description** The issue concerns Multiple ActiveX controls in MailBee.dll, which allow remote attackers to overwrite arbitrary files via the `SaveToDisk` method or modify files via the `AddStringToFile` method. **Recommendations** For MailBee Objects version 5.5, consider disabling the `SaveToDisk` and `AddStringToFile` methods until a patch is available to prevent remote attackers from overwriting or modifying files.