also @ TechSpot: Dell's thumb drive-sized computer will ship in July for $100

Skype security flaw found

By Derek Sooman

On May 30, 2006, 3:35 PM

Security-Assessment.com, an Australian security firm, has revealed the existence of a flaw in a Skype URI (Uniform Resource Identifier) type that could potentially allow hackers to make file transfers on affected machines. In order to prevent malware writers from successfully exploiting this flaw, and creating relevant malware, Security-Assessment.com worked with Skype to find a solution to the problem first, before the flaw could be exploited; news was kept quiet until a solution was found. Skype seemingly have a patch now.

The flaw is not that easy to exploit. Seemingly, in order for an attack based on the flaw to be carried out, an attacker must authorise the target on his or her contact list, which doesn't require authorisation from the target, and then get the target to visit a website under the attacker’s control. Further to this, the attacker must also know the location of whatever files he or she wants from the victim's machine. Perhaps this might be used to read the user's Skype config file, or to gain access to some operating systems files that could facilitate further attacks.

More information may be found here.

No tags on this story

3 comments

User Comments: 3

Got something to say? Post a comment
  1. May 30, 2006 4:28 PM
    DragonMaster said:
    Mainstream = Flaws easily found. Either it's because it's poorly written OR there's a lot of people using it so it's easier to find flaws.
    Reply
  2. May 30, 2006 4:48 PM
    nathanskywalker said:
    So, basically as long as you utilize common sense you should be ok. And scince the fixed it anyway, i guess it's not real big deal.
    Reply
  3. May 30, 2006 6:36 PM
    canadian said:
    Still, runng Skype is safer than running windows.
    Reply

Recently commented stories

Post a new comment

Social Login & Guest Posting TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.
TechSpot on:

Most Popular

Trending Featured
More Trending Topics

Featured on Routers

Downloads and Drivers

Downloads   Drivers  

Wise Youtube Downloader 1.23

QupZilla 1.4.3

Trillian 5.3.0.15c

BlueStacks Beta 0.7.12

Windows Firewall Control 4.0.0.0

More Downloads

Latest Discussion

HDD vs USB vs SSD boot 5 replies on Storage and Networking

Which is your favorite game? 11 replies on Gaming

Keep getting Windows not valid popup 25 replies on Windows OS

Moar Free Dota2 5 replies on Gaming

My laptop cannot find external monitor 5 replies on Mobile Computing

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.