Skype update plugs critical bug
On the QT
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
Users running older versions of Skype risk attack from a newly disclosed vulnerability.
A boundary error involving the Skype4COM URI handler creates a buffer overflow risk. This, in turn, provides a means for hackers to attack users running vulnerable versions of Skype who visit maliciously-constructed websites.
The vulnerability is confirmed in Skype 3.5.0.239. Other versions of the popular VoIP package prior to 3.6.0.216 may also be affected.
Details of the flaw were reportedly submitted to Skype in early November. Skype released an update in mid-November that touted higher video quality. It also fixed the security bug, a point Skype itself neglected to mention. Information on the vulnerability only emerged following an advisory from security tools vendor Tipping Point late last week. ®
COMMENTS
Not before time
I stopped using Skype as I found it too vulnerable to infiltration and rather unstable. Often it would cease operation in the middle of a contact without warning and re-establishing the contact was nigh on impossible. As I could not rely on it I stopped before I got hurt.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
