Skype Releases Update for Mac Client, Fixes Vulnerability Uncovered by Pure Hacking
Article by George Norman
On 10 May 2011
Yesterday we were reporting that Skype for Mac is plagued by a critical vulnerability uncovered by Pure Hacking, a group of ethical hackers from Australia. The vulnerability goes something like this: if someone in the Contact list sends the user a specifically crafted message, Skype for Mac would crash. To exploit this vulnerability that someone would have to already be in the Contact list or trick the user into adding him to the list, because by default, Skype for Mac does not accept messages from people who are not in the Contacts list

This vulnerability was addressed by Skype with version 5.1.0.922, but the thing is that users were not prompted to get this update. Skype explained that because there were no reports about this vulnerability being exploited in the wild, users were not presented with a prompt to update to version 5.1.0.922.

Advertising

This is not to say that they could get the update. They could update Skype for Mac to version 5.1.0.922 by manually triggering an update (by clicking Skype -> Check for updates) or by downloading the latest version from Skype.

Skype did not prompt the users to update because it had another update in the pipeline – version 5.1.0.935, update that has just been pushed to all Skype for Mac users. This update, as Skype’s Chief Information Security Officer Adrian Asher explained, includes the security fixes of version 5.1.0.922 and features some additional product fixes. Skype for Mac users will be automatically prompted to get the update; alternatively they can manually trigger an update. Once the majority of users get the update, Skype will release additional information on the vulnerability uncovered by Pure Hacking.

“Once we have seen a large proportion of our Skype for Mac user base have upgraded to this new version, we will provide further details on the vulnerability in the Skype for Mac client that was raised by Pure Hacking,” said Adrian Asher.



Tags: Skype, Skype for Mac, Security
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 24 Feb 2017
In all, a total of 56 games spread across 24 award categories were nominated for the 20th Annual D.I.C.E. Awards by the Academy of Interactive Arts & Sciences (AIAS), the non-profit organization dedicated to the advancement and recognition of the interactive arts.
By George Norman on 22 Feb 2017
What’s better than getting to play a game before everyone else? Getting to play it for free, of course! That’s the case with Tom Clancy’s Ghost Recon Wildlands, the open world military shooter that is...
Related News
By George Norman on 15 Nov 2016
Don’t want to install Skype on any of your devices, you don’t have to, you can use Skype for Web. on’t want to sign into your account? You don’t have to, because Microsoft is...
By George Norman on 04 Nov 2016
Marvel’s Doctor Strange action adventure movie hits theaters in the US today, November 4. To celebrate the movie's release, Skype introduced new emoticons and a new bot.
By George Norman on 30 Aug 2016
Job interviews are never easy. You’re nervous, you want to make a good impression, you’re anxious to get the job, and the last thing you want is for something to go wrong.
By George Norman on 19 Sep 2016
The original Galaxy Note 7 has a faulty battery that might explode. The new Galaxy Note 7 has a safe battery that won't. But how do you tell them apart?
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Skype Releases Update for Mac Client, Fixes Vulnerability Uncovered by Pure Hacking
HTML Linking Code