CVE-2004-1114 - CVE Reference - Advisories

CVE Reference: CVE-2004-1114

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-1114

Description: Buffer overflow in the handling of command line arguments in Skype 1.0.x.94 through 1.0.x.98 allows remote attackers to execute arbitrary code via a callto:// URL with a long non-existent username, a different vulnerability than CVE-2004-1777.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18063 SAID Secunia Advisory: SA13191 OSVDB 11786 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/028852.html CONFIRM http://www.skype.com/security/ssa-2004-02.html http://www.skype.com/products/skype/windows/changelog.html BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110067029422696&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=110062240706017&w=2 BID 11682

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	IBM DB2 CLR Stored Procedures Unspecified Vulnerability

2.	HP Enterprise Discovery Unspecified Privilege Escalation

3.	Xoops PopnupBlog Module "index.php" Cross-Site Scripting

4.	DriveCrypt Plus Pack Password Disclosure Security Issue

5.	IBM Lotus Quickr Multiple Cross-Site Scripting Vulnerabilities

6.	K-Rate Premium Multiple Vulnerabilities

7.	Sun Solaris NFS RPC Zones Denial of Service

8.	Red Hat update for kernel

9.	Sharity Unspecified Vulnerability

10.	AWStats Totals Cross-site Scripting and PHP Code Execution