Skype new IT protection measure

dan at geer.org dan at geer.org
Fri Aug 17 10:30:16 EDT 2007


Ed Gerck writes:
 | We've heard it so many times: "There's nothing to worry about."
 | Now, Skype adds a new IT protection measure -- "love":
 | 
 |   "The Skype system has not crashed or been victim of a cyber
 |   attack. We love our customers too much to let that happen."
 | 


---------- Forwarded message ----------

From: Valery Marchuk <tecklord at argocom.cv.ua>
To: full-disclosure at lists.grok.org.uk
Date: Fri, 17 Aug 2007 10:30:50 +0300
Subject: [Full-disclosure] Skype Network Remote DoS Exploit

Hi all!

On SecurityLab.ru forum an exploit code was published by an anonymous
user.  Reportedly it must have caused Skype massive disconnections
today.

The PoC uses standard Skype client to call to a specific number.
This call causes denial of service of current Skype server and
forces Skype to reconnect to another server. The new server also
"freezes" and so on ... the entire network.

Liks: http://www.securitylab.ru/news/301422.php
PoC: http://en.securitylab.ru/poc/301420.php

Best regards,

Valery Marchuk
www.SecurityLab.ru

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list