CVE-2005-3267

Loading...

General

Score:10.0/10.0
Severity:High
Category:Numeric Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 27/10/05 - Updated on 11/07/17

Description

Integer overflow in Skype client before 1.4.x.84 on Windows, before 1.3.x.17 on Mac OS, before 1.2.x.18 on Linux, and 1.1.x.6 and earlier allows remote attackers to cause a denial of service (crash) via crafted network data with a large Object Counter value, which leads to a resultant heap-based buffer overflow.

Category: Numeric Error

CWE-189 (Numeric Errors)
Weaknesses in this category are related to improper calculation or conversion of numbers.

Security Notices

US National Vulnerability DatabaseCVE-2005-3267

Exploits

SecurityFocusBID-15192

Relative technologies

VendorProduct
skype_technologiesskype

Share this vulnerability with:

Twitter Facebook LinkedIn Mail