Skype URI callto username overflow

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Skype URI callto username overflow
From: Hillel Himovich <hll@xxxxxxxxxxxxxxxx>
Date: 10 Jun 2004 00:46:45 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


Here is a cute little URI I found crashing skype on it's latest version 
(0.98.0.04).
It's proboby a buffer overflow of some sort, so, a special crafted URI culd 
potentionally lead to remote code execution.
(would probobly be extreamly hard doing it threw a URI, but still an option)

callto://aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/

If you really really want this not to happend to you, u shuld remove the 
reffering registry entrance to "callto://" in URI's

Regards,
Hillel Himovich
"HLL"
HLL@xxxxxxxxxxxxxxxx

Prev by Date: Re: [SECURITY] [DSA 515-1] New lha packages fix several vulnerabilities; Re:
Next by Date: [security bulletin] SSRT4717 rev.0 HP Tru64 UNIX SSL/TLS Potential Remote Denial of Service (DoS)
Previous by thread: Linksys Web Camera Cross-site Scripting Vuln
Next by thread: [security bulletin] SSRT4717 rev.0 HP Tru64 UNIX SSL/TLS Potential Remote Denial of Service (DoS)
Index(es):
- Date
- Thread