Описание
Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via a crafted message.
Комментарий
Per: http://blogs.skype.com/security/2011/05/security_vulnerability_in_mac.html
'Please note, Skype's other clients, e.g. Windows and Linux, are not susceptible to this vulnerability.'
Ссылки
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:skype:skype:5.0.0.105:*:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.0.0.105:beta:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.0.0.123:beta:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.0.0.152:*:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.0.0.156:*:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.1.0.104:*:*:*:*:*:*:*
cpe:2.3:a:skype:skype:5.1.0.112:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05803
Низкий
8.5 High
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via a crafted message.
EPSS
Процентиль: 90%
0.05803
Низкий
8.5 High
CVSS2
Дефекты
NVD-CWE-noinfo