Skype@3.6.0.244 Security Vulnerabilities and Issues — Skype@3.6.0.244 CVE List

Lucene search

Skype TechnologiesSkype3.6.0.244

3 matches found

cve•added 2008/02/05 3:0 a.m.•63 views

CVE-2008-0582

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.1 through 3.6.0.244 on Windows allows remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Full Name field of a reviewer of a business item entry, accessible through (1) the Skype...

4.3CVSS6.2AI score0.00789EPSS

cve•added 2008/06/06 10:32 p.m.•39 views

CVE-2008-1805

Incomplete blacklist vulnerability in Skype 3.6.0.248, and other versions before 3.8.0.139, allows user-assisted remote attackers to bypass warning dialogs and possibly execute arbitrary code via a file: URI that ends in an executable extension that is not covered by the blacklist.

9.3CVSS7.4AI score0.01687EPSS

cve•added 2008/06/06 10:32 p.m.•36 views

CVE-2008-2545

Skype 3.6.0.248, and other versions before 3.8.0.139, uses a case-sensitive comparison when checking for dangerous extensions, which allows user-assisted remote attackers to bypass warning dialogs and possibly execute arbitrary code via a file: URI with a dangerous extension that uses a different c...

9.3CVSS7.7AI score0.01687EPSS