• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Skype Technologies skype4com URI Handler Remote Heap Corruption Vulnerability

Skype is prone to a remote heap-based memory-corruption vulnerability because of a flaw in the application's URI handler.

Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected application, facilitating the compromise of affected computers.

Versions prior to Skype 3.6.0.216 for Windows are affected. It is currently unknown if other platforms are affected.