You are here: silicon.com > Software > Security Strategy

Security Strategy

Skype plugs VoIP-for-Mac flaw

Beware crafty URLs...

Tags: flaw, skype, mac, voip

Printer Friendly Email Story RSS

By Joris Evers

Published: 4 October 2006 08:35 BST

Skype on Tuesday issued an update that fixes a serious security flaw in its internet telephony software for Apple's Mac OS X.

A vulnerability exists in the way Skype for Mac handles web links, according to a Skype advisory. An attacker could construct a malformed Skype link which, when clicked on, can cause the application to crash or allow a system to be compromised.

The company said in its advisory: "A user of Skype for Mac who follows a specially crafted URL may experience a crash of the Skype software and possibly may execute arbitrary code without consent." The VoIP provider, part of online auction giant eBay, deems the issue "high" risk.

A miscreant could publish a malformed Skype link on a website, for example, and try to trick someone into following it, the company said.

The vulnerability exists in Skype for Mac releases prior to and including 1.5.*.79. It has been fixed in release 1.5.*.80 or later, which was available for download on the Skype website on Tuesday.

Joris Evers writes for CNET News.com

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Off the shelf: Sainsbury's and Skype hook up

Skype goes freebie crazy across the pond

Skype - is your version secure?

Skype sued for patent violation

Skype plots dual-mode phones by year's end

Skype goes Mac

Skype rings changes with standalone VoIP phone

Mobile Skype grinds to a halt

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Peter Cochrane Peter Cochrane's Blog: Is convergence a fiction? Or could it finally be happening…

Clive Longbottom Quocirca's Straight Talking: A game of two halves Microsoft Virtualisation scores while its SOA bores...

Super scanners at UK airports

Prison tech: Mobiles blocked and bodies scanned

NHS data handling: Calls for independent audits

ID cards: 'Political' move, claim airport workers

Viacom vs Google: YouTube privacy fears

Google Talk finds a home on iPhone


  • Jobs
SYSTEMS ADMINISTRATOR - APPLE MAC & OS X DESKTOP SUPPORT - Cambridge, South East

SYSTEMS ADMINISTRATOR - APPLE MAC & OS X DESKTOP SUPPORT - Cambridge, South East The European Bioinformatics Institute (EBI) is a non-profit academic ...

Systems Support Analyst

Novell NetWare, Linux, and Apple Mac OS - Experience of remote computer systems management Desirable Requirements Include: - Knowledge of Novell ...

IT Support Engineer

You will have a sound understanding of PC applications, preferably with a degree or HND in Computer Science or equivalent; a good working knowledge ...

CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.

College classrooms go high-tech

Travis Perkins builds its tech future

Thin clients switch on digitally excluded

MSDN Webcast: Demystifying Office Business Applications for the Developer (Level...

Understanding SOA and Business Mashups: Automate. Coordinate. Collaborate. No coding...

Tips and Tricks for Office 2007

MSDN Webcast: Demystifying Office Business Applications for the Business Analyst...

Stories from the web...


60-Second Pitch: FMC

Peter Cochrane's Video Blog: Power outrage

Business agility through flexible IT


Super scanners at UK airports

Only one in 10 Brits recycles old mobiles

Hospitals roll out RFID

Microsoft readies online apps for business

EU law to end file-sharers time online?




Quick Sitemap Links: