CVE-2006-2312

Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows remote authorized…

mitre·CWE-88·Published 2006-05-19

CVSS

—

EPSS

0.04

KEV

Exploits

cve.orgen

229 chars

Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*.78 for Windows allows remote authorized attackers to download arbitrary files via a URL that contains certain command-line switches.

NVDen

229 chars

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:P/I:N/A:N