Skype zero day HTML/(Javascript) code injection

Discussion in 'Мировые новости. Обсуждения.' started by FlatL1ne, 22 Aug 2011.

  1. FlatL1ne

    FlatL1ne Elder - Старейшина

    Joined:
    5 Oct 2007
    Messages:
    89
    Likes Received:
    31
    Reputations:
    10
    Noptri Public Security опубликовала рабочий POC для Skype.

    Affected Software:
    Software: Skype <= 5.5.0.113
    Affected Platforms:
    Windows (XP, Vista, 7)

    Proof of Concept:
    The following HTML codes can be used to trigger the described vulnerability:
    --- SNIP ---
    [+] Home Phone Number:
    <b>INJECTION HERE</b>
    [+] Office Phone Number:
    <center><i>INJECTION HERE</i></center>
    [+] Mobile Phone Number:
    <a href="#">INJECTION HERE</a>

    Источник: http://www.thehackernews.com/2011/08/skype-zero-day-htmljavascript-code.html
     
    #1 FlatL1ne, 22 Aug 2011
  2. Alexandr II

    Alexandr II -=ImperatoR=-

    Joined:
    28 Dec 2007
    Messages:
    1,069
    Likes Received:
    671
    Reputations:
    87
    и как он относится к мировым новостям7
    да и теги не правильно выставил...
     
    #2 Alexandr II, 22 Aug 2011
  3. StopSpam

    StopSpam Banned

    Joined:
    5 Jul 2011
    Messages:
    0
    Likes Received:
    0
    Reputations:
    0
    прошляпили разрабы конечно, но даже пробовать не стоит уже пофиксили наверное =/
     
    #3 StopSpam, 22 Aug 2011
  4. НTL

    НTL Elder - Старейшина

    Joined:
    26 Jan 2008
    Messages:
    715
    Likes Received:
    205
    Reputations:
    -26
    Microsoft...
     
    #4 НTL, 22 Aug 2011
  5. KoT3

    KoT3 New Member

    Joined:
    24 Feb 2011
    Messages:
    9
    Likes Received:
    0
    Reputations:
    0
    Индусы-быдлокодеры...
     
    #5 KoT3, 23 Aug 2011
  6. ZnikiR

    ZnikiR Member

    Joined:
    14 Jan 2009
    Messages:
    117
    Likes Received:
    21
    Reputations:
    -5
    http://noptrix.net/advisories/skype_inject.txt
    Парни что лучше почитать по теме сплойтов?
     
    #6 ZnikiR, 23 Aug 2011
    Last edited: 23 Aug 2011
  7. RiskAttack

    RiskAttack New Member

    Joined:
    20 Jun 2009
    Messages:
    0
    Likes Received:
    1
    Reputations:
    0
    пока все не обновятся, считай есть уязвимость. :cool:
     
    #7 RiskAttack, 23 Aug 2011
  8. HIMIKAT

    HIMIKAT Elder - Старейшина

    Joined:
    12 Jan 2007
    Messages:
    2,707
    Likes Received:
    581
    Reputations:
    403
    Noptri Public Security меня последнее время радуют, много интересных уязвимостей находят.
     
    #8 HIMIKAT, 23 Aug 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - Skype zero HTML
  1. alexzir

    На Amazon запретили продажу мультитула для пентестеров Flipper Zero

    alexzir, 8 Apr 2023, in forum: Мировые новости. Обсуждения.
    Replies:
    0
    Views:
    1,315
    alexzir
    8 Apr 2023
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.