Skype bug lets 'buddies' swipe files
Skype has warned of a flaw in its popular VoIP client software that creates a means for hackers to swipe files from their "buddies". The flaw can be exploited via a malicious constructed Skype URL which initiates the transfer of a single named file to another Skype user.
The security bug stems from an error within the parsing of the parameters passed by the URL handler.
At The Register.
[ Read more ]