Skype Bug May Expose Users to Malicious Code
Submitted by securityadmin on
http://www.theregister.co.uk/2011/08/22/skype_security_bug/
"The XSS, or cross-site scripting, vulnerability in Skype 5.5.0.113 is
the result of the voice-over-IP client failing to inspect user-supplied
phone numbers for malicious code, researcher Levent Kayan said. As a
result, attackers might be able to exploit the bug to inject commands or
scripts that hijack the machine running the program.