New vulnerability discovered on skype

A critical vulnerability has just been discovered in Skype. Due to this vulnerability, hackers can remotely execute malicious code and even cause the system to stop working. Without a doubt, a huge danger for many users.

New vulnerability discovered on Skype

The vulnerability has been discovered by a security laboratory in Berlin. They are also responsible for discovering a previous vulnerability in Skype, that time regarding calls and video calls on the platform. Although this new vulnerability is very serious for users, since the main problem is that user interaction is not required to exploit it.

How this vulnerability works

An attacker does not need more than a basic Skype account to carry out his attack. They can remotely block the application with an "unexpected error" to overwrite active process logs. They can also run malicious code on a target system running the vulnerable version of Skype. The main problem lies in the way the Windows-owned application uses the file 'MSFTEDIT.DLL'.

The published report states that attackers can take advantage of this vulnerability in a very simple way. They can create a malicious image file and then copy and paste it from the clipboard to the Skype conversation window. Once the image is on the clipboard, the application starts experiencing problems and crashes completely.

Therefore, as you can see, it is a vulnerability that can be exploited very easily. We hope that from Skype they give a solution soon and do not let millions of users be exposed. What do you think about that vulnerability?