CVE-2006-5084

Skype < 1.5.0.79 - Format String Vulnerability via Malformed Skype URL

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-5084. PoCs published by Tom Ferris.

AI-analyzed exploit summary This exploit leverages a format-string vulnerability in Skype for Mac OS X by injecting malformed input via an IFRAME SRC attribute, leading to arbitrary code execution. The PoC demonstrates the vulnerability by triggering a crash or potential code execution through repeated format specifiers.

Description

Format string vulnerability in the NSRunAlertPanel function in eBay Skype for Mac 1.5.*.79 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed Skype URL, as originally reported to involve a null dereference.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Tom Ferris · textremoteosx

https://www.exploit-db.com/exploits/28710

View Code ZIP pw:eip

This exploit leverages a format-string vulnerability in Skype for Mac OS X by injecting malformed input via an IFRAME SRC attribute, leading to arbitrary code execution. The PoC demonstrates the vulnerability by triggering a crash or potential code execution through repeated format specifiers.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Skype 1.5.0.79 and prior for Mac OS X

No auth needed

Prerequisites: Victim must visit a malicious webpage or open a crafted HTML file

MITRE ATT&CK