Skype URI handler file access
|skype-uri-handler-file-access (26557)||Medium Risk|
Skype running on Microsoft Windows operating systems could allow a remote attacker access to an arbitrary file caused by a vulnerability in the URI handler. If a remote attacker was provided a link for downloading a file from the target victim, the remote attacker could modify the URI link to download an arbitrary file from the victim's system. The Skype file transfer dialogue box will appear when the malicious URI link is clicked.
Apply the patch for this vulnerability, as listed in the SKYPE SECURITY BULLETIN SKYPE-SB/2006-001. See References.
- BugTraq Mailing List, Sun May 21 2006 - 18:44:20 CDT: Skype - URI Handler Command Switch Parsing.
- SKYPE SECURITY BULLETIN SKYPE-SB/2006-001: Improper handling of URI arguments.
- Skype Web site: Skype - The whole world can talk for free..
- BID-18038: Skype Technologies Skype URI Handling Remote File Download Vulnerability
- CVE-2006-2312: Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows remote authorized attackers to download arbitrary files via a URL that contains certain command-line switches.
- OSVDB ID: 25658: Skype URL Handling Arbitrary File Disclosure
- SA20154: Skype URL Handling File Disclosure Vulnerability
- US-CERT VU#466428: Skype URI handler fails to properly parse parameters
- Skype Skype for Windows 2.0.x.104 and prior
- Skype Skype for Windows 2.5.x.0 - 2.5.x.78
May 19, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this