Skype has released an update for its eponymous VoIP client to remedy a cross-zone scripting vulnerability and other bugs. The vulnerability allows manipulated videos from Dailymotion and Metacafe to inject malicious code. The update forces all HTML content to run in the internet zone instead of the local zone. The new version 3.6.0.248 also contains a blacklist and a whitelist to determine which programs have access to Skype’s public API. Users can either use Skype’s update function or download the software manually.”]