CVE-2011-2074

Published May 10, 2011

Last updated 14 years ago

CVSS info 8.5

Overview

Description: Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via a crafted message.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 8.5
Impact score: 10
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Evaluator

Comment: Per: http://blogs.skype.com/security/2011/05/security_vulnerability_in_mac.html 'Please note, Skype's other clients, e.g. Windows and Linux, are not susceptible to this vulnerability.'
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:skype:skype:5.0.0.105:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F17A54D5-36B9-43AB-AAAB-50060AB06841"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.0.0.105:beta:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D24C8F2-480C-4263-A3AD-B0DD6D2E1479"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.0.0.123:beta:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1755686-6370-4924-B3EC-2C55E15F64F4"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.0.0.152:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9776A81C-2D3A-40F1-BD03-BDD1FF084BE7"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.0.0.156:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5561BF25-CAD5-49CC-9944-9D8B18A4DFB0"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.1.0.104:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE8AF25D-636D-4E3E-9560-7FA3887B5D8B"
          },
          {
            "criteria": "cpe:2.3:a:skype:skype:5.1.0.112:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25ADBD4E-7F02-4B41-BAD9-57F487ABC6FF"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References