cbcvebase.
CVE-2007-5989
published 2007-12-13

CVE-2007-5989: Unspecified vulnerability in the skype4com URI handler in Skype before 3.6 GOLD allows remote attackers to execute arbitrary code via "short string values"…

PriorityP336medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
4.44%
90.2th percentile
Unspecified vulnerability in the skype4com URI handler in Skype before 3.6 GOLD allows remote attackers to execute arbitrary code via "short string values" that result in heap corruption.

Affected

18 ranges
VendorProductVersion rangeFixed in
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype
skype_technologiesskype

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.