You are here: silicon.com > Software > Security Strategy

Skype plugs VoIP-for-Mac flaw

Beware crafty URLs...

Tags: skype, flaw, mac, voip

By Joris Evers

Published: 4 October 2006 08:35 GMT

Skype on Tuesday issued an update that fixes a serious security flaw in its internet telephony software for Apple's Mac OS X.

A vulnerability exists in the way Skype for Mac handles web links, according to a Skype advisory. An attacker could construct a malformed Skype link which, when clicked on, can cause the application to crash or allow a system to be compromised.

The company said in its advisory: "A user of Skype for Mac who follows a specially crafted URL may experience a crash of the Skype software and possibly may execute arbitrary code without consent." The VoIP provider, part of online auction giant eBay, deems the issue "high" risk.

A miscreant could publish a malformed Skype link on a website, for example, and try to trick someone into following it, the company said.

The vulnerability exists in Skype for Mac releases prior to and including 1.5.*.79. It has been fixed in release 1.5.*.80 or later, which was available for download on the Skype website on Tuesday.

Joris Evers writes for CNET News.com

Add comment

Print story with

Email story

Off the shelf: Sainsbury's and Skype hook up

Skype goes freebie crazy across the pond

Skype - is your version secure?

Skype sued for patent violation

Skype plots dual-mode phones by year's end

Skype goes Mac

Skype rings changes with standalone VoIP phone

Mobile Skype grinds to a halt

In silicon.com

Commentary

Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead

Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy

Latest News

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year

Windows 7: Who's adopting it, when and why?

Jobs

Tester - Mac, Linux and Windows - London

Applicants must have solid commercial exposure in establishing Mac, Linux and Windows test environments and undertaking testing activities within ...

Objective C - PHP - Iphone - Mac Developer

You will need proven experience developing applications for Mac and the IPhone using Objective-C and PHP. My client is looking for an objective C ...

iPhone/Mac Software Engineer

Job Title: iPhone/Mac Software Engineer Our client is actively seeking to recruit an iPhone/Mac Software Engineer to join their expanding engineering ...

Special Report Focus

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.