MitreCVE-2011-2074CVE-2011-2074
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
88.7%
Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via a crafted message.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| skype | skype | 5.0.0.105 | cpe:2.3:a:skype:skype:5.0.0.105:*:*:*:*:*:*:* |
| skype | skype | 5.0.0.105 | cpe:2.3:a:skype:skype:5.0.0.105:beta:*:*:*:*:*:* |
| skype | skype | 5.0.0.123 | cpe:2.3:a:skype:skype:5.0.0.123:beta:*:*:*:*:*:* |
| skype | skype | 5.0.0.152 | cpe:2.3:a:skype:skype:5.0.0.152:*:*:*:*:*:*:* |
| skype | skype | 5.0.0.156 | cpe:2.3:a:skype:skype:5.0.0.156:*:*:*:*:*:*:* |
| skype | skype | 5.1.0.104 | cpe:2.3:a:skype:skype:5.1.0.104:*:*:*:*:*:*:* |
| skype | skype | 5.1.0.112 | cpe:2.3:a:skype:skype:5.1.0.112:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
References
blogs.skype.com/security/2011/05/security_vulnerability_in_mac.html
isc.sans.edu/diary.html?storyid=10837
secunia.com/advisories/44522
www.purehacking.com/blogs/gordon-maddern/skype-0day-vulnerabilitiy-discovered-by-pure-hacking
www.securityfocus.com/bid/47747
www.theregister.co.uk/2011/05/06/skype_for_mac_critical_vulnerability/
www.vupen.com/english/advisories/2011/1192
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
88.7%