Skype patches 'wormable and dangerous' Mac OS X bug

Skype patches 'wormable and dangerous' Mac OS X bug

Summary: Skype has shipped a security patch for an "extremely wormable and dangerous" vulnerability affecting Skype for Mac OS X users but, inexplicably, the company isn't providing details of the severity of the flaw.

SHARE:

Skype has shipped a security patch for an "extremely wormable and dangerous" vulnerability affecting Skype for Mac OS X users but, inexplicably, the company isn't providing details of the severity of the flaw.

The update, which is only available manually, comes one month after researcher Gordon Maddern published a blog post warning about the dangers of this vulnerability to Mac users.

"Thee long and the short of it is that an attacker needs only to send a victim a message and they can gain remote control of the victims Mac.   It is extremely wormable and dangerous," Maddern said.

Skype followed up with an advisory that simply references "security updates."

The issue is now fixed with Skype for Mac version 5.1.0.922.  Because this requires a manual update, it important for Mac users to apply the patch via the "software update" feature.

Topics: Social Enterprise, Apple, Collaboration, Hardware, Operating Systems, Security, Software

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

16 comments
Log in or register to join the discussion
  • Let me be the first -

    WOW! MS just purchased Skype only a few hous ago and already MS put it's first security hole in it!

    There, I just took the ABMer's thunder! :)
    Bill Pharaoh
    • RE: Skype patches 'wormable and dangerous' Mac OS X bug

      @Bill Pharaoh
      you've just stole my thought!
      Dump windoze or O$X and get Linux!
      Linux Geek
      • RE: Skype patches 'wormable and dangerous' Mac OS X bug

        @Linux Geek LOL nice try...
        Tommy S.
      • RE: Skype patches 'wormable and dangerous' Mac OS X bug

        @Linux Geek Sold- You should be in advertising! ...Now how do I install iTunes...?
        Gritztastic
    • RE: Skype patches 'wormable and dangerous' Mac OS X bug

      @Bill Pharaoh This has been a known issue for several months.
      vel0city
      • RE: Skype patches 'wormable and dangerous' Mac OS X bug

        @vel0city

        He was being sarcastic
        bobiroc
    • It is more like...

      @Bill Pharaoh

      <i>"WOW! MS just purchased Skype only a few hous ago and already MS put it's first security hole in it!"</i>

      It is more like MS Just purchased Skype only a few hours ago and already they are in full swing closing the holes left in there by the previous owners.
      honeymonster
    • RE: Skype patches 'wormable and dangerous' Mac OS X bug

      @Bill Pharaoh

      Better yet it was put there by Microsoft as some government back door to control your computer.
      bobiroc
  • RE: Skype patches 'wormable and dangerous' Mac OS X bug

    Good one... ;)
    straycat5678
  • RE: Skype patches 'wormable and dangerous' Mac OS X bug

    Happy it's been fixed! Updating now.
    markh789
  • RE: Skype patches 'wormable and dangerous' Mac OS X bug

    please check the skype rev level in your article. i believe you refer to the OLD version not the new one ...
    ever1nose
  • Sigh.

    quote "but, inexplicably, the company isn?t providing details of the severity of the flaw."

    Well, I think your own article says they spelled out quite adequate details of the _severity_ of the flaw.

    Maybe you were thinking they should have told how to exploit it??

    I must say, I actually do appreciate very much the efforts persons make to discover and notify of flaws.

    It's the lack of judgement about how much and when you tell details that's too often the problem.

    Journalism has always lived on an edge of responsibility about things like this, and respect follows well thought out communication.
    Narr vi
  • RE: Skype patches 'wormable and dangerous' Mac OS X bug

    "The issue is now fixed with Skype for Mac version 5.1.0.922. Because this requires a manual update, it important for Mac users to apply the patch via the ?software update? feature."

    This must be old news, I updated to v 5.1.0.935 abut 20 days ago
    fmangino@...
  • It's all about the attack vectors

    Obviously, a DLL was injected. This never would have happened with Linux and LSM. LSM shoots magic pixie bullets at worms to kill them. I stake my reputation on it.
    Your Non Advocate
    • RE: Skype patches 'wormable and dangerous' Mac OS X bug

      @facebook@...

      nice channeling DTS there and dll on mac really now XD
      Viper589
  • RE: Skype patches 'wormable and dangerous' Mac OS X bug

    Great!!! thanks for sharing this information to us !
    <a href="http://www.yuregininsesi.com" title="seslichat">sesli chat</a> <a href="http://www.yuregininsesi.com" title="seslisohbet">sesli sohbet</a>
    talih