You are here: silicon.com > Software > Security Strategy

Security Strategy

Skype plugs VoIP-for-Mac flaw

Beware crafty URLs...

Tags: skype, flaw, mac, voip

Printer Friendly Email Story RSS

By Joris Evers

Published: 4 October 2006 08:35 GMT

Skype on Tuesday issued an update that fixes a serious security flaw in its internet telephony software for Apple's Mac OS X.

A vulnerability exists in the way Skype for Mac handles web links, according to a Skype advisory. An attacker could construct a malformed Skype link which, when clicked on, can cause the application to crash or allow a system to be compromised.

The company said in its advisory: "A user of Skype for Mac who follows a specially crafted URL may experience a crash of the Skype software and possibly may execute arbitrary code without consent." The VoIP provider, part of online auction giant eBay, deems the issue "high" risk.

A miscreant could publish a malformed Skype link on a website, for example, and try to trick someone into following it, the company said.

The vulnerability exists in Skype for Mac releases prior to and including 1.5.*.79. It has been fixed in release 1.5.*.80 or later, which was available for download on the Skype website on Tuesday.

Joris Evers writes for CNET News.com

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Off the shelf: Sainsbury's and Skype hook up

Skype goes freebie crazy across the pond

Skype - is your version secure?

Skype sued for patent violation

Skype plots dual-mode phones by year's end

Skype goes Mac

Skype rings changes with standalone VoIP phone

Mobile Skype grinds to a halt

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business

UK ID cards rollout hit by delay as launch date revealed

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year


  • Jobs
Support Manager - Mac, Windows 2000, XP, Vista

Support Manager - Mac, Windows 2000, XP, Vista. Support Manager - Mac, Windows 2000, XP, Vista. Due to continued success and growth, they are looking ...

Mac/PC Support Engineer –Mac OSX, Adobe, Quark, Windows, Server 2003, AD

KEYWORDS : Mac OSX, Windows, OSX Server, ARD, Support, Macintosh, Windows Server, Quark Express, Adobe, MS Office, Extensis Suitcase, FTP, Carbon ...

Technical Support Engineer - French Speaking

Brands & technologies, and Vulnerability Network Scanners ( Nessus, nmap, Cybercop, ISS Internet Scanner). Windows 2000, Windows NT, Novell, Lotus ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Virtual Private Servers (VPS)

Looking for a fast payback? 10 Minutes with Free Tool Can Save Thousands

The Truth About Wasteful Spending on Software: How to Stop Giving Your Software Vendors...

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


ID card database: 500 names added in first month

Women in IT: Tech has an image problem

Tesco Mobile to get a taste of Apple's iPhone

Marketing chiefs: Are you spamming your customers?

IT skills shortage squashed by recession?

Users tell SAP: 'We need to talk more'




Quick Sitemap Links: