3 matches found
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-1805. Reason: This candidate is a reservation duplicate of CVE-2008-1805. Notes: All CVE users should reference CVE-2008-1805 instead of this candidate. All references and descriptions in this candidate have been removed to...
CVE-2008-1805
CVE-2008-1805 affects Skype: incomplete blacklist in the file:// URI handling allows user-assisted remote attackers to bypass the security warning and possibly execute arbitrary code via a URL ending in an executable extension not covered by the blacklist. Reported for Skype 3.6.0.248 and other v...
CVE-2008-2546
CVE-2008-2546 is a reservation duplicate of CVE-2008-1805 and is not a separate active entry; the connected records identify the real vulnerability as CVE-2008-1805. CVE-2008-1805 describes an incomplete blacklist vulnerability in Skype 3.6.0.248 and earlier before 3.8.0.139 that lets user-assist...