CVE-2006-2312
Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows remote authorized attackers to download arbitrary files via a URL that contains certain command-line switches.
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 2.6 | AV:N/AC:H/Au:N/C:P/I:N/A:N | [email protected] |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Products Mentioned
Configuraton 0
Skype>>Skype >> Version To (excluding) 2.0.0.105
- Skype>>Skype >> Version - (Open CPE detail)
- Skype>>Skype >> Version 0.90.0.5 (Open CPE detail)
- Skype>>Skype >> Version 0.90.0.10 (Open CPE detail)
- Skype>>Skype >> Version 0.91.0.2 (Open CPE detail)
- Skype>>Skype >> Version 0.92.0.4 (Open CPE detail)
- Skype>>Skype >> Version 0.93.0.18 (Open CPE detail)
- Skype>>Skype >> Version 0.93.1.1 (Open CPE detail)
- Skype>>Skype >> Version 0.94.0.19 (Open CPE detail)
- Skype>>Skype >> Version 0.94.0.28 (Open CPE detail)
- Skype>>Skype >> Version 0.95.0.11 (Open CPE detail)
- Skype>>Skype >> Version 0.95.0.25 (Open CPE detail)
- Skype>>Skype >> Version 0.95.0.36 (Open CPE detail)
- Skype>>Skype >> Version 0.95.0.40 (Open CPE detail)
- Skype>>Skype >> Version 0.96.0.1 (Open CPE detail)
- Skype>>Skype >> Version 0.96.0.3 (Open CPE detail)
- Skype>>Skype >> Version 0.97.0.1 (Open CPE detail)
- Skype>>Skype >> Version 0.97.0.3 (Open CPE detail)
- Skype>>Skype >> Version 0.97.0.6 (Open CPE detail)
- Skype>>Skype >> Version 0.97.0.40 (Open CPE detail)
- Skype>>Skype >> Version 0.98.0.04 (Open CPE detail)
- Skype>>Skype >> Version 0.98.0.6 (Open CPE detail)
- Skype>>Skype >> Version 0.98.0.28 (Open CPE detail)
- Skype>>Skype >> Version 0.98.0.42 (Open CPE detail)
- Skype>>Skype >> Version 0.98.0.68 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.9 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.10 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.18 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.29 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.94 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.97 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.100 (Open CPE detail)
- Skype>>Skype >> Version 1.0.0.106 (Open CPE detail)
- Skype>>Skype >> Version 1.1.0.6 (Open CPE detail)
- Skype>>Skype >> Version 1.1.0.73 (Open CPE detail)
- Skype>>Skype >> Version 1.1.0.79 (Open CPE detail)
- Skype>>Skype >> Version 1.2.0.37 (Open CPE detail)
- Skype>>Skype >> Version 1.2.0.41 (Open CPE detail)
- Skype>>Skype >> Version 1.2.0.48 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.45 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.48 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.51 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.54 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.55 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.57 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.60 (Open CPE detail)
- Skype>>Skype >> Version 1.3.0.66 (Open CPE detail)
- Skype>>Skype >> Version 1.4.0.71 (Open CPE detail)
- Skype>>Skype >> Version 1.4.0.78 (Open CPE detail)
- Skype>>Skype >> Version 1.4.0.84 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.69 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.73 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.79 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.81 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.90 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.97 (Open CPE detail)
- Skype>>Skype >> Version 2.0.0.103 (Open CPE detail)
Skype>>Skype >> Version From (including) 2.5.0.0 To (excluding) 2.5.0.79
- Skype>>Skype >> Version 2.5.0.72 (Open CPE detail)
Microsoft>>Windows >> Version *
- Microsoft>>Windows >> Version - (Open CPE detail)
- Microsoft>>Windows >> Version - (Open CPE detail)
- Microsoft>>Windows >> Version - (Open CPE detail)
- Microsoft>>Windows >> Version - (Open CPE detail)
- Microsoft>>Windows >> Version 1.0 (Open CPE detail)
- Microsoft>>Windows >> Version 2.0 (Open CPE detail)
- Microsoft>>Windows >> Version 3.0 (Open CPE detail)
- Microsoft>>Windows >> Version 3.1 (Open CPE detail)
- Microsoft>>Windows >> Version 3.11 (Open CPE detail)
- Microsoft>>Windows >> Version 2000 (Open CPE detail)
- Microsoft>>Windows >> Version 2000 (Open CPE detail)
- Microsoft>>Windows >> Version server_2008 (Open CPE detail)
- Microsoft>>Windows >> Version server_2008 (Open CPE detail)
- Microsoft>>Windows >> Version server_2008 (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
- Microsoft>>Windows >> Version vista (Open CPE detail)
References
http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0549.html
Tags : mailing-list, x_refsource_FULLDISC
Tags : mailing-list, x_refsource_FULLDISC
http://www.securityfocus.com/archive/1/434707/30/4860/threaded
Tags : mailing-list, x_refsource_BUGTRAQ
Tags : mailing-list, x_refsource_BUGTRAQ
2025©
tesweb SA
