Are you looking for my non-technical blog?

This is now my technical-only blog, my non-technical blog is here.

09 November 2005

SKYPE-SB/2005-002

A security bug has been found in the "Skype for Windows user client" that can make it execute arbitrary code through a buffer overflow when Skype is called upon to handle malformed URLs that are in Skype-specific URI types callto:// and skype://. In addition, Skype can be made to execute arbitrary code during importation of a VCARD that is in a specific non-standard format. So, it is recomended to upgrade to the newest Sykep version (Release 1.4.*.84 or later). More Info: http://www.skype.com/security/skype-sb-2005-02.html Tags: , , , ,