HTTP: Skype URI Handler Heap Corruption Exploit
This signature detects attempts to exploit a known vulnerability in Skype's Skype4Com URI handler. An attacker can create a malicious Web site containing Web pages with dangerous SWkype URl's, which if accessed by a victim, allows the attacker to gain control of the victim's client browser, Skype Technologies' clients prior to 3.6 Gold are vulnerable.
Extended Description
Skype is prone to a remote heap-based memory-corruption vulnerability because of a flaw in the application's URI handler. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected application, facilitating the compromise of affected computers. Versions prior to Skype 3.6.0.216 for Windows are affected. It is currently unknown if other platforms are affected.
Affected Products
Skype_technologies skype
References
BugTraq: 26748
CVE: CVE-2007-5989
URL: http://securitytracker.com/alerts/2007/Dec/1019056.html
Short Name
HTTP:STC:SKYPE4COM
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2007-5989 Corruption Exploit Handler Heap Skype URI bid:26748
Release Date
01/30/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3729
False Positive
Unknown
Vendors
Skype_technologies
CVSS Score
6.8