CHUCKREY.COM Avatar

Posted 8 months ago
by chuckrey

Short URL

45 Notes

  Skype is so easy to implement, so hard to secure. Risk worth taking? Doubt it.   A researcher has supposedly found a vulnerability in videoconferenceing software Skype that allows an attacker to potentially inject HTML and JavaScript code into the program. Berlin-based Levent Kayan said that the vulnerability may affect Skype for Microsoft’s Windows XP, Vista and 7 operating systems. “It has not been verified though, if it’s possible to hijack cookies or to attack the underlying operating system. Attacker could give a try using extern .js files,” he said in an August 17 advisory. Kayan said the vulnerability particularly affects Skype version 5.5.0.113.   Sources: Yahoo News (http://goo.gl/UUVVH) and NOPTRIX.net (http://www.noptrix.net)

 

Skype is so easy to implement, so hard to secure. Risk worth taking? Doubt it.

 

A researcher has supposedly found a vulnerability in videoconferenceing software Skype that allows an attacker to potentially inject HTML and JavaScript code into the program.

Berlin-based Levent Kayan said that the vulnerability may affect Skype for Microsoft’s Windows XP, Vista and 7 operating systems.

“It has not been verified though, if it’s possible to hijack cookies or to attack the underlying operating system. Attacker could give a try using extern .js files,” he said in an August 17 advisory.

Kayan said the vulnerability particularly affects Skype version 5.5.0.113.

 

Sources: Yahoo News (http://goo.gl/UUVVH) and NOPTRIX.net (http://www.noptrix.net)

Tags

Replies

Likes

  1. chuckrey posted this

 

Reblogs