VDB
CVE-2005-3267
CVE-2005-3267
PUBLISHED
CVSS 10 CRITICAL
Integer overflow in Skype client before 1.4.x.84 on Windows, before 1.3.x.17 on Mac OS, before 1.2.x.18 on Linux, and 1.1.x.6 and earlier allows remote attackers to cause a denial of service (crash) via crafted network data with a large Object Counter value, which leads to a resultant heap-based buffer overflow.
EPSS 18.24% · 95.3th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
18.24%
95.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| skype_technologies | skype | 0.92.0.12, 0.93.0.3, 0.98.0.04 |
Timeline
- Oct 27, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 22, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- skype-client-udp-bo(22850) vdb
- 17305 third-party-advisory
- http://skype.com/security/skype-sb-2005-03.html url
- 20051025 Skype security advisory mailing-list
- 20306 vdb
- ADV-2005-2197 vdb
- VU#905177 third-party-advisory
- 15192 vdb
- 115 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2005-3267 advisory
- http://secunia.com/advisories/17305 url