Previous | Home | Next
Phil Wolff
More by Author

Update Skype Now: Flaws Found; Fixed

October 26, 2005 05:04 PM

Topics: News | Security | software

Skype had a few bugs of the security kind, reported them, fixed them, and you should probably download a free update from Skype.com. Via Share Skype blog earlier today. Kudos to Skype for prompt and letter perfect customer care. Here's the original post in full...

Yesterday, Skype reacted to
reports of security vulnerabilities in its product by releasing
software updates and widely circulating information about how to
resolve the problem. Skype users may download the upgrade free of
charge from Skype’s website, http://www.skype.com.

Skype’s engineering team has worked hard to ensure our products are safe and reliable. The updates were needed in order to fix two software problems, one of which can render a user vulnerable to a malicious attack if the user is duped into following web hyperlinks that are specially crafted to cause unwanted software to run.

Skype proactively discloses and rates security issues when they arise so that its customers have the latest information about its software. In addition, Skype participates as a member in the international Forum of Incident Response and Security Teams, a global body that allows for rapid interchange of information among software vendors, government, business and network operators.

Skype uses industry-standard vulnerability notification schemes, such as the Common Vulnerability and Exposures (CVE) system (http://cve.mitre.org/) and voluntarily participates in the Common Vulnerability Scoring System (CVSS) (http://www.first.org/cvss/) which helps users rate the seriousness of vulnerabilities reported by a vendor.

For more info about Skype security and for all Skype Security Bulletins, see Skype security resource center.

Post | Email | Print | Comments (3) | TrackBack (0)



Trackback Pings

TrackBack URL for this entry:
http://www.skypejournal.com/cgi-bin/mt/mt-tb.cgi/1652

Comments

Posted by: Rick at October 26, 2005 6:56 PM

I think it's a ploy to get everybody up to the new version. :-)

Posted by: MuppetMaster at October 26, 2005 10:46 PM

Prompt? Skype released a 'security' report highlighting one of the bugs before acknowledging it themselves and fixing it. Not a good move for a company attempting to allow fears on how it handles security.

Posted by: Jim Courtney at October 27, 2005 7:12 AM

As reported by Secunia Advisories there are updates to all versions of Skype: Windows, Mac OS X, Linux and Pocket PC.

Post a comment




Remember Me?

(you may use HTML tags for style)





Other Recent Posts

Skype 3.0 Folder Pollution in Life | Products | Skype杂志 | complaints | design | ebay | skype | skypejournal | voip | wishlist on 11/22/06

Skype 3.0 Beta for Windows; bugfix build 137 in General Notices | News | Products | Skype News | Skype杂志 | ebay | skype | skypejournal | voip on 11/22/06

Skype PR Wake Up Call III: The Commentary in Business | Every Post | Ideas & Views | Marketing | Skype News | Skype杂志 | Strategy | ebay | observations | skype | skypejournal | voip on 11/22/06

Wednesday morning scan in Business | Life | Marketing | News | Products | Skype Partner Watch | Skype杂志 | Strategy | Technology | Tips & Tricks | Yahoo | counterpoints | design | ebay | freedom | observations | regulation | skype | skypejournal | voip on 11/22/06

Yes, TalkPlus reverse engineered Skype. in Developers | North America | Skype Partner Watch | Skype杂志 | Strategy | Technology | ebay | skype | skypejournal | voip on 11/21/06

Email to a friend