"The XSS, or cross-site scripting, vulnerability in Skype 22.214.171.124 is
the result of the voice-over-IP client failing to inspect user-supplied
phone numbers for malicious code, researcher Levent Kayan said. As a
result, attackers might be able to exploit the bug to inject commands or
scripts that hijack the machine running the program.
in an advisory published on Wednesday. 'It has not been verified though,
if it's possible to hijack cookies or to attack the underlying operating
system.' An attacker might also exploit the vulnerability to remotely
Please reply back to this ticket if you found this security alert useful.