[Voptalk] Sample exploit code associated with the skype service disruption
Peter Thermos
peter.thermos at palindrometech.com
Mon Aug 20 11:20:40 EDT 2007
It appears that lasts week's Skype service disruptions are associated with a
malformed address URI submitted by a Skype client. Sending a long malformed
URI cripples the Skype server which causes the Skype client to reconnect to
the next Skype server and submits the same query which has the same effect.
In essence the attacker can traverse the list of Skype servers and disrupt
the entire Skype network.
Here is the link to the code.
http://en.securitylab.ru/poc/extra/301419.php
Does anyone have any additional info on this?
Peter
More information about the Voptalk
mailing list