Skype Crafted UDP Packet Remote Overflow

2005-10-25T22:31:16
ID OSVDB:20306
Type osvdb
Reporter EADS Corporate Research Center()
Modified 2005-10-25T22:31:16

Description

Vulnerability Description

A remote overflow exists in Skype. The application fails to validate the user-controlled length of a UDP packet resulting in a heap overflow. With a specially crafted UDP packet, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Technical Description

The appropriate upgrade per platform is listed below.

Skype for Windows: Release 1.4.*.84 or later

Skype for Mac OS X: Release 1.3.*.17 or later

Skype for Linux: Release 1.1.*.20 or later

Skype for Pocket PC: No patch is yet available.

Solution Description

Upgrade to the appropriate fixed version, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Skype. The application fails to validate the user-controlled length of a UDP packet resulting in a heap overflow. With a specially crafted UDP packet, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Secunia Advisory ID:17305 Packet Storm: http://packetstormsecurity.org/0510-advisories/skypeRealData.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-10/0284.html ISS X-Force ID: 22850 Generic Informational URL: http://www.theregister.co.uk/2005/10/25/skype_vuln/ FrSIRT Advisory: ADV-2005-2197 CVE-2005-3267 CERT VU: 905177 Bugtraq ID: 15192