| Check Point Reference: |
SBP-2007-07 |
| Date Published: |
16 Jul 2007 |
| Severity: |
High
|
| Last Updated: |
Monday 01 January, 2007 |
| Source: |
SmartDefense Research Center |
| Protection Provided by: |
|
| Who is Vulnerable? | Skype |
| Vulnerability Description |
Instant Messaging applications allow communication and collaboration between Internet users using various modes of communication, including instant messages exchange, voice and video, application sharing, white board, file transfer and remote assistance.
Skype is a widely used program for communicating with other users over the Internet. This program is prone to multiple vulnerabilities.
|
| Vulnerability Details | Instant Messaging applications such as Skype, are prone to multiple vulnerabilities. The impacts of these vulnerabilities could range from modifying data in a victim's friend list, to a denial of service attack, to the execution of malicious code on a victim's system. For example, passing an overly long user name and password for authorization may cause a buffer overflow that could bring down the Instant Messenger server. In addition, Instant Messaging capabilities such as file transfer are a potential source of virus and worm infections. |
Feedback