CVE-2017-6517
CRITICALMicrosoft Skype 7.16.0.102 - Unauthenticated Remote Code Execution via DLL Hijacking
Title source: llmDescription
Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. This vulnerability exists due to the way .dll files are loaded by Skype. It allows an attacker to load a .dll of the attacker's choosing that could execute arbitrary code without the user's knowledge.The specific flaw exists within the handling of DLL (api-ms-win-core-winrt-string-l1-1-0.dll) loading by the Skype.exe process.
References (7)
Core 7
Core References
Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2017/Mar/44
Press/Media Coverage x_refsource_misc
https://twitter.com/tiger_tigerboy/status/755332687141883904
Press/Media Coverage x_refsource_misc
https://twitter.com/vysecurity/status/845013670103003138
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/96969
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1038209
Not Applicable x_refsource_confirm
https://technet.microsoft.com/security/cc308575.aspx
Exploit, Third Party Advisory, US Government Resource x_refsource_misc
http://packetstormsecurity.com/files/141650/Skype-7.16.0.102-DLL-Hijacking.html
Scores
CVSS v3
9.8
EPSS
0.4634
EPSS Percentile
98.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-427
Status
published
Products (1)
microsoft/skype
7.16.0.102
Published
Mar 23, 2017
Tracked Since
Feb 18, 2026