MEDIUM🇬🇧 English

CVE-2004-1778

CVSS 4.6v2.0pub. 2004-12-22upd. 2026-04-16

Skype 0.92.0.12 and 1.0.0.1 for Linux, and possibly other versions, creates the /usr/share/skype/lang directory with world-writable permissions, which allows local users to modify language files and possibly conduct social engineering or other attacks.

oryginał EN
CVSS Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
  • Skype

    APP
    Skype
    0.92.0.121.0.0.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2024-21411HIGH8.8ten sam produkt

Skype for Consumer Remote Code Execution Vulnerability

CVE-2011-2074HIGH8.5ten sam produkt

Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated ...

CVE-2010-3136HIGH9.3ten sam produkt

Untrusted search path vulnerability in Skype 4.2.0.169 and earlier allows local users, and possibly remote att...

CVE-2009-4741HIGH10.0ten sam produkt

Unspecified vulnerability in the Extras Manager before 2.0.0.67 in Skype before 4.1.0.179 on Windows has unkno...

CVE-2006-2312LOW2.6ten sam produkt

Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Window...