Technical Description

Multiple vulnerabilities were identified in Skype, which could be exploited by remote attackers to execute arbitrary commands or cause a denial of service.

The first issue is due to a buffer overflow error when processing a specially crafted "callto://" or "skype://" URL, which could be exploited by attackers to execute arbitrary commands.

The second vulnerability is due to an error when importing non-standard VCARD files, which could be exploited by attackers to compromise a vulnerable system by convincing a user to import a malicious VCARD.

The third flaw is due to a heap overflow error when handling specially crafted network packets, which could be exploited by remote attackers to execute arbitrary commands or cause a denial of service.

Affected Products

Skype for Windows Release 1.4.*.83 and prior
Skype for Mac OS X Release 1.3.*.16 and prior
Skype for Linux Release 1.2.*.17 and prior
Skype for Pocket PC Release 1.1.*.6 and prior

Solution

Apply patches :
http://www.skype.com/download/

References

http://www.vupen.com/english/advisories/2005/2197
http://www.skype.com/security/skype-sb-2005-02.html
http://www.skype.com/security/skype-sb-2005-03.html
http://www.pentest.co.uk/documents/ptl-2005-01.html

Credits

Vulnerabilities reported by Mark Rowe, Joe Moore and EADS/CRC security team.

ChangeLog

2005-10-25 : Initial release
2005-10-28 : Updated Advisory

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.