Researcher Finds Dangerous Vulnerability In Skype

Researcher Finds Dangerous Vulnerability In Skype 42

Posted by Soulskill on Friday July 15, 2011 @03:33PM from the so-we-blame-microsoft-right dept.

alphadogg writes "A security consultant has notified Skype of a cross-site scripting flaw that could be used to change the password on someone's account, according to details posted online. The consultant, Levent Kayan, based in Berlin, posted details of the flaw on his blog on Wednesday and notified Skype a day later. He said on Friday he hasn't heard a response yet. The problem lies in a field where a person can input their mobile phone number. Kayan wrote that a malicious user can insert JavaScript into the mobile phone field of their profile." Skype has confirmed the flaw, but calls it 'minor,' saying it only affects people who communicate with a potential attacker on a regular basis. A fix is planned for next week.

Researcher Finds Dangerous Vulnerability In Skype

Search 42 Comments Log In/Create an Account

Comments Filter:

inb4 microsoft (Score:0, Funny)

by Anonymous Coward writes: on Friday July 15, 2011 @03:44PM (#36779282)

inb4 any comments blaming Microsoft.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Researcher Finds Dangerous Vulnerability In Skype 42

Researcher Finds Dangerous Vulnerability In Skype More Login

Researcher Finds Dangerous Vulnerability In Skype

inb4 microsoft (Score:0, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot