Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1407

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-1407
Last Modified 05 Sep 2008 04:49:04
Published 03 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1407

Summary

Skype for Windows 1.2.0.0 to 1.2.0.46 allows local users to bypass the identity check for an authorized application, then call arbitrary Skype API functions by modifying or replacing that application.

Vulnerable Systems

Application

  • Skype Technologies Skype 1.2.0.0

  • Skype Technologies Skype 1.2.0.37

  • Skype Technologies Skype 1.2.0.41

  • Skype Technologies Skype 1.2.0.46


References

CONFIRM - http://www.skype.com/security/ssa-2005-01.html


Last Updated: 27 May 2016 10:40:09