Skype for Mac 5.x: Pure Hacking Discovered 0-day Vulnerability Addressed
Article by George Norman
On 09 May 2011
Pure Hacking, a group of ethical hackers from Australia, uncovered a 0-day vulnerability that plagues version 5.x of Skype for Mac; the Windows and the Linux versions of Skype are not affected. Here are the details Pure Hacking released about this vulnerability: if someone in the Contact list sends you a specifically crafted message, your Skype for Mac would crash.

By default, Skype for Mac does not accept messages from people who are not in the Contacts list, which means someone who is not on the list could not exploit the vulnerability and crash Skype for Mac. The person trying to exploit this vulnerability would have to already be in the Contact list or trick the user into adding him to the list.

Advertising

The group of ethical hackers contacted Skype to tell the company about the vulnerability. The good news is that when Pure Hacking contacted Skype, Skype was already aware of the vulnerability and was working on a fix. The even better news is that the vulnerability has been fixed in Skype for Mac version 5.1.0.922, an update that you will have to get manually (either by clicking Skype -> Check for updates or by downloading it straight from Skype here).

Skype explained that because it did not see any reports of the vulnerability being exploited in the wild, users will not be prompted to get Skype for Mac version 5.1.0.922. “As there were no reports of this vulnerability being exploited in the wild, we did not prompt our users to install this update, as there is another update in the pipeline that will be sent out early next week,” said Skype’s Chief Information Security Officer Adrian Asher on Friday, the 6th of May.

Asher went on to say that the update that is in the pipeline will contain additional big fixes and that when it will be rolled out, Skype for Mac users will be prompted to get the update.



Tags: Skype, Skype for Mac, Security
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 28 Jun 2017
The last time that Yahoo Mail changed its design was back in October 2013, when it celebrated its "sweet sixteen." That old design has now been replaced with a new one, and here's everything that's changed.
By George Norman on 26 Jun 2017
Remember the classic SEGA games of old, the ones that you used to play as a kid? Well, SEGA is taking you on a nostalgia trip by giving you the chance to play these games once more, but this time on your mobile.
Related News
By George Norman on 27 Feb 2017
Getting a smart camera, smart TV, smart fridge, and other smart devices may seem like a good idea at first. I mean, who wouldn’t want to reap the benefits of living in a smart home? Things don’t look so upbeat when you...
By George Norman on 13 Mar 2017
Older PCs with less than spectacular hardware need to be kept in check and tweaked so that you can squeeze as much performance as possible out of their tired, old innards. This means saying NO to a lot of things that new and powerful PCs can very easily handle.
By George Norman on 20 Mar 2017
Scout, the security and privacy-oriented web browser that Avira has been working on since the summer of 2015, has finally been released as a stable product that’s ready for the general public.
By George Norman on 13 Feb 2017
While Valentine’s Day is all about love, romance, and candy-shaped chocolate, it’s also a great opportunity for all the scammers and cybercriminals that lurk online.
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Skype for Mac 5.x: Pure Hacking Discovered 0-day Vulnerability Addressed
HTML Linking Code