Buffer overflow in Skype for Windows 1.1.x.0 through 1.4.x.83 allows remote attackers to execute arbitrary code via (1) callto:// and (2) skype:// links, or (3) a non-standard VCARD, possibly due to an underlying error in the SysUtils.WideFmtStr Delphi routine.
References
Link | Resource |
---|---|
http://secunia.com/advisories/17305/ | |
http://skype.com/security/skype-sb-2005-02.html | Patch Vendor Advisory |
http://www.kb.cert.org/vuls/id/668193 | US Government Resource |
http://www.kb.cert.org/vuls/id/930345 | US Government Resource |
http://www.pentest.co.uk/documents/ptl-2005-01.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/15190 | |
http://www.vupen.com/english/advisories/2005/2197 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/22848 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-10-27T04:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-10-20T00:00:00
Link: CVE-2005-3265
JSON object: View
NVD Information
Status : Modified
Published: 2005-10-27T10:02:00.000
Modified: 2017-07-11T01:33:08.423
Link: CVE-2005-3265
JSON object: View
Redhat Information
No data.
CWE