Get a Pentest and security assessment of your IT network.

News

Skype confirms XSS vulnerability in iPhone app

An XSS bug in the iPhone and iPad version of Skype allows an attacker to directly access files on the device, including the user’s Address Book. The bug is an incorrect encoding of the incoming user’s “Full Name” which allows JavaScript code to be embedded in it. The problem is made more exploitable by the way Skype uses the embeddable WebKit browser. An update to fix the bug is expected to be released early in September, according to security researcher Phil Purviance. Skype has confirmed there is an issue and said it is working hard to fix it.”]

Source: http://www.h-online.com/security/news/item/Skype-confirms-XSS-vulnerability-in-iPhone-app-1346284.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2