Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Critical flaws in Skype patched

Critical flaws in Skype patched

by Nikola Strahija on October 27th, 2005 Skype has issued a critical update to its telephony software after the discovery of numerous critical flaws.


Two of the flaws could allow attackers to take over Skype user's system, the company said in an advisory. These flaws affect a number of Windows versions of the software ranging between versions 1.1 to 1.4.

The first vulnerability works by tricking a Skype user to click on a specially-crafted URL, while the second requires a Skype user to import a malicious vCard - the electronic business card format used by some e-mail programs.

Security research firm Secunia have rated the flaws "highly critical", and listed a third type of error, which affects Mac OS and Linux clients as well, that could be exploited to crash the Skype client.

-It's difficult to control from a network administrator point of view, and we're left with an extremely homogenous environment, said Tom Newton, a product development manager with firewall vendor SmoothWall. -Once everybody is running the same code, it becomes much more profitable for miscreants and wrongdoers to affect our computers.

Skype Technologies says there are now 61 million registered Skype users.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »