Home / News & Blogs

Skype bug may expose user data

Joris Evers | May 20, 2006 12:21 AM PDT

Summary

Update to Internet telephony software is available to prevent possible attacks that could expose user data, Skype says.

Topics

Joris Evers
Skype Technologies has updated its popular Skype Internet telephony software to fix a security bug that could expose sensitive data.

The flaw could let an attacker construct a Skype hyperlink which, when clicked on by the target, sends a file from the victim's computer to another Skype user, the company said in a security alert published Friday.

Security-monitoring company Secunia deems the issue "moderately critical," right in the middle of its five-tiered rating system. The bug could be exploited by attackers "to bypass certain security restrictions and potentially disclose certain sensitive information," Secunia said in its advisory.

An updated version of Skype, release 2.5.0.82, includes a fix for the flaw and was released Wednesday.

Skype was acquired by online auctioneer eBay last September. More than 100 million people are registered to use the service, according to Skype.

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity