Skype.Skype4com.URI.Handler.Memory.Corruption

description-logoDescription

This indicates an attempt to exploit a boundry error in Skype.
Skype is vulnerable to a boundary error in Skype4COM.dll, in the "skype4com" URI handler. The error occurs when processing short strings through a web browser. As a result an attacker can execute arbitrary code on a vulnerable system.

affected-products-logoAffected Products

Skype versions older than 3.6.0.216

Impact logoImpact

System Compromise: remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Update to version 3.6.0.216 or later.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)