ID |
CVE-2007-4429
|
Summary |
Unspecified vulnerability in Skype allows remote attackers to cause a denial of service (server hang) via unknown vectors related to sending long URIs, as claimed to be actively exploited on 20070817 using a "call to a specific number." NOTE: this identifier is for the en.securitylab.ru disclosure. According to the vendor, this issue is separate from the "sign-on issues" that reduced Skype service on 20070817, which appears to be a site-specific problem. As of 20070821, it is not clear whether this issue is simply a symptom of the larger sign-on problem. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 5.0 (as of 15-10-2018 - 21:35) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
NONE |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
refmap
via4
|
bugtraq | - 20070817 Skype Network Remote DoS Exploit
- 20070820 RE: Skype Network Remote DoS Exploit
- 20070820 Re: Skype Network Remote DoS Exploit
- 20070820 Re[2]: Skype Network Remote DoS Exploit
| misc | | sreason | 3032 |
|
Last major update |
15-10-2018 - 21:35 |
Published |
20-08-2007 - 19:17 |
Last modified |
15-10-2018 - 21:35 |