Menu
Skype patches critical flaws

Skype patches critical flaws

A number of critical bugs have been discovered in the Skype VOIP software, and users are advised to upgrade to the latest version.

Skype users are being urged to upgrade to the latest version of the popular Internet telephony client, thanks to a number of critical flaws in the software that were disclosed Tuesday by Skype's maker, Skype Technologies.

If exploited, two of the flaws could allow attackers to take over a Skype user's system, the company said in an advisory published Tuesday. These flaws affect a number of Windows versions of the software ranging between version 1.1 to 1.4, the statement said.

The first of these flaws could be exploited by tricking a Skype user to click on a specially-crafted URL, while the second would require a Skype user to import a malicious vCard. VCard is an electronic business card format used by some e-mail programs.

Security research firm Secunia has rated the flaws "highly critical," and listed a third type of error, which affects Mac OS and Linux clients as well, that could be exploited to crash the Skype client. The Secunia advisory also tells users to update to the latest version of the software.

At this time there is no known malicious software that takes advantage of these bugs, according to Secunia.

Skype's security advisory can be found here: http://www.skype.com/security/skype-sb-2005-02.html

The Secunia advisory is here: http://secunia.com/advisories/17305/


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments