Time to update your Skype
Skype users will want to upgrade to version 3.6.0.216 for Windows to close a security hole attackers could exploit to run malicious code on vulnerable machines.
According to Danish vulnerability clearinghouse Secunia, the problem is an error in the “skype4com” URI handler when processing short string values and can be exploited to corrupt memory. Successful exploitation allows execution of arbitrary code when a user visits a malicious Web site.
The flaw was disclosed by an anonymous researcher via TippingPoint’s Zero-Day initiative.
Start the conversation
0 comments