Skype users will want to upgrade to version 126.96.36.199 for Windows to close a security hole attackers could exploit to run malicious code on vulnerable machines.
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
According to Danish vulnerability clearinghouse Secunia, the problem is an error in the “skype4com” URI handler when processing short string values and can be exploited to corrupt memory. Successful exploitation allows execution of arbitrary code when a user visits a malicious Web site.
The flaw was disclosed by an anonymous researcher via TippingPoint’s Zero-Day initiative.