Skype patches VoIP vulnerability


Skype has patched a critical vulnerability in the Mac OS X edition of its flagship VoIP client that could be used by attackers to grab control of a user's computer.

The flaw, which Skype rated as "high" and Danish vulnerability tracker Secunia pegged as "highly critical," is in how the Internet telephony application processes Web addresses. According to the Skype security advisory, an attacker could create a malformed URL, then send that to a Skype user who, after clicking on the link, would either see Skype crash or have his Mac hijacked. Skype patches VoIP vulnerability - Security - www.itnews.com.au

Linked by shanmuga Thursday, 5th October 2006 1:19AM