Username   Password     | Not yet a member? Register 
     Home    |    Categories    |    News    |    Articles    |    Search    |    Advertise    |    Tell a Friend";    |    Contact Us
»» Phone Service & Providers
»» Equipment & Gadgets
»» Voice Over IP
»» Calling Cards
»» Wireless and SMS
»» VSAT & Satellite Phones
»» Telecom Websites, Blogs and Forums
Critical hole in Skype VoIP client remedied
  Date Posted    December 8, 2007
  News Full Story / Report
Critical hole in Skype VoIP client remedied

It has been announced that Skype has remedied a critical security hole in version 3.6 of its VoIP software for Windows, released in Mid November, 2007.Critical hole in Skype VoIP client remedied

When a specially crafted website is visited, attackers are able to inject malicious code onto a PC and execute it with the user's privileges. It would then be possible to infect the computer with contaminants.

The Zero Day Initiative says there was a flaw in the URI handler skype4com, which is created when Skype is installed. Short strings can then be used to provoke a memory violation in this handler, allowing code to be written into memory.

It is not clear whether this flaw entered the software with the update for the URI hole that was made public just prior to this update. But it is clear that Skype has once again closed critical holes furtively without informing users at all.

The last security advice published by Skype is dated 3 October, 2006. Users who still have an older version of Skype should install the latest version as soon as possible. Generally, the software informs users that a new major update has been released. The software reportedly also informs users about security releases, but Skype first has to declare them as such. 

Reference : VoIP News
     About Us    |    Terms and Conditions    |    Privacy Statements    |    Link to us
Copyright © 2008 TelecomSlot.com All Rights Reserved  •  Best viewed at 1024x768 Screen Resolution or higher