Critical security vulnerability found in Skype
View at PC Pro
A highly critical security vulnerability has been discovered in various flavours of the Skype IP telephony software.
A boundary error exists when handling Skype-specific URI types such as 'callto://' and 'skype://'. This can be exploited to cause a buffer overflow and allows arbitrary code execution when the user clicks on a specially-crafted Skype-specific URL.
A highly critical security vulnerability has been discovered in various flavours of the Skype IP telephony software.
A boundary error exists when handling Skype-specific URI types such as 'callto://' and 'skype://'. This can be exploited to cause a buffer overflow and allows arbitrary code execution when the user clicks on a specially-crafted Skype-specific URL.
Comments
Post a Comment