Tech | August 23, 2011 | 1 comment

Skype Vulnerable to HTML/JavaScript Code Injection

source: http://https://www.infosecisland.com/blogview/16064-Skype-Vulnerable-to-HTMLJavaScript-Code-...

Paisano1
added this

"Does it make sense to allow users to 'embed' HTML code in their Skype profile and especially in those 'phone number' fields? Also, there is no option to define any HTML code in Skype client. I was able to find those bugs with Linux Skype client. I guess they don't focus so much on that client..."

https://www.infosecisland.com/blogview/16064-Skype-Vulnerable-to-HTMLJavaScript-...

groups:

Community, Tech, Current Tonight
tags:

News, Economy, Law, Finance, Interview, Legal, Financial, Computer, Hackers, Information, Homeland Security, Control, Data, infosec, Cybersecurity, Governance, cyber security, infrastructure, National Security, Financial Identity, Due diligence, Infoduciary, Financial InfoSec, Information Fiduciary, D and O liability, electronic database, costs, cyber-crime, csi, IIA, ID, ISR, Confidential, Liability, Markets, consumer product liability, Diplomacy, ISSA, CPA, Privacy Rights, identity thief, ISACA, Policy, Outsourcing, DRI, Bypass, Misuse, CISSP, CIPP, CISA, CISM, regulations, CGEIT, risk, Espionage, Insider Threat, cio, breach, Meltdown, dod, regulatory, DDOS, Phishing, breaches, Password, IPS, IAP, infiltrate, IP Address, CFO, DISA, login, cyberattack, DHS NCD, paperless, cyber offensive, kinetic attacks, InfosecIsland.com, Anthony M. Freed, Infosec Island, Skype 77 more
|

1 comment // Skype Vulnerable to HTML/JavaScript Code Injection

display: newest | oldest | popular

upload file

webcam

embed code

image url
- Paste the url of an image:
  process
  
  Paste an embed code:
  
  process
- Upload an image file:
  
  1MB file size limit
  - Online Display Ad:
    300x250 pixels
  - Flash Video Overlay Ad:
    300x50 pixels
  Upload an image to represent your video:
  
  We will automatically pick out an image to represent video files. If you want to choose your own image, upload it here.
- Record a webcam:
[x]

we might already have a story about this:
Choose media for your post:
checking post...
+ add

blog/

text/

link/

image

/webcam

+ add

embed code/

image url

checking post...

| cancel
I want to upload this to Current.com, and I own the rights to this file.
- Help us classify your file. What kind of upload is it?
- Pod (short non-fiction video, usually 1-7 minutes long, that tells a story or profiles a character)
- Other Awesome Stuff (anything else)
| cancel

- 0
  
  tverdell
- Although I use skype daily, ever since MS took over I don't think this software will go anywhere.
  
  I think Google will offer a better solution.
- 9 months ago
  - flag
  reply

select your country

Community Spotlight

Join a Community Group

BFD - Big Featured Discussion

Viewer Created Content

Skype Vulnerable to HTML/JavaScript Code Injection

1 comment // Skype Vulnerable to HTML/JavaScript Code Injection

we might already have a story about this:

top videos

Full Court Press

Rep. Ellison calls for Syria safe zone, Ploughshares President talks consequences

Viewpoint

Exclusive: American jihadi Omar Hammami speaks to Current from hideout in Somalia

Talking Liberally

The WI recall political litmus test

The Young Turks

Even after another massacre, ‘I’m not sure that help is on the way’ to Syria, Cenk says

find current on tv

find current online

recent comments

© 2012 Current TV, LLC
All Rights Reserved

the basics

follow us online

tools

stay in touch

select your country

Community Spotlight

Skype Vulnerable to HTML/JavaScript Code Injection

1 comment // Skype Vulnerable to HTML/JavaScript Code Injection

we might already have a story about this:

top videos

find current on tv

find current online

recent comments

© 2012 Current TV, LLC All Rights Reserved

the basics

follow us online

tools

stay in touch

© 2012 Current TV, LLC
All Rights Reserved