Preemptive Protection against a Skype Heap Overflow Vulnerability
| Attack ID: | CPAI-2005-145 |
 |
|
| Publish Date: | |
|
|
| Last Update: | |
|
|
| Category: | Instant Messengers |
|
|
| Vulnerable Systems: | Skype for Windows: All releases prior to and including 1.4.*.83 Skype for Mac OS X: Skype for Linux: Skype for Pocket PC: |
|
|
| Source: | SKYPE-SB/2005-003 |
|
|
| Description: | A vulnerability was detected in the Skype user client for all platforms. An attacker can crash Skype by sending a specially crafted stream of network traffic to a Skype client. This will lead to a loss of availability of the Skype application. |
|
|
| Severity: | |
| Details: | The vulnerability is due to an error in bounds checking in a specific networking routine. By sending a stream of specifically-crafted network traffic to a Skype client network an attacker can cause the client to overwrite part of the heap. Skype will most likely abort execution due to an internal error, although other unpredictable behavior is possible. |
|
|
| Attack Detection: | Users of VPN-1 NGX R60 who have applied the solution outlined below will identify the following SmartView Tracker log entries: Attack Name: Instant Messengers Attack Information: Skype protocol detected on connection |
|
|
| Solution: | VPN-1 NGX R60 users are protected against this vulnerability if the solution of CPSA-2005-07 has been applied |
|
|
| Industry Reference: | CVE-2005-3267 |
|
|
| Additional Information: | |