cpe:/a:skype_technologies:skype:1.1.0.61 cpe:/a:skype_technologies:skype:1.1.0.73 cpe:/a:skype_technologies:skype:1.1.0.79 cpe:/a:skype_technologies:skype:1.2.0.0 cpe:/a:skype_technologies:skype:1.2.0.37 cpe:/a:skype_technologies:skype:1.2.0.41 cpe:/a:skype_technologies:skype:1.2.0.46 cpe:/a:skype_technologies:skype:1.3.0.45 cpe:/a:skype_technologies:skype:1.3.0.48 cpe:/a:skype_technologies:skype:1.3.0.51 cpe:/a:skype_technologies:skype:1.3.0.54 cpe:/a:skype_technologies:skype:1.3.0.55 cpe:/a:skype_technologies:skype:1.3.0.57 cpe:/a:skype_technologies:skype:1.3.0.60 cpe:/a:skype_technologies:skype:1.3.0.66 cpe:/a:skype_technologies:skype:1.4.0.71 cpe:/a:skype_technologies:skype:1.4.0.78 cpe:/a:skype_technologies:skype:1.4.0.83 CVE-2005-3265 2005-10-27T06:02:00.000-04:00 2017-07-10T21:33:08.423-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2005-10-27T09:33:00.000-04:00 ALLOWS_ADMIN_ACCESS BID 15190 SECUNIA 17305 VUPEN ADV-2005-2197 CERT-VN VU#668193 CERT-VN VU#930345 CONFIRM http://skype.com/security/skype-sb-2005-02.html MISC http://www.pentest.co.uk/documents/ptl-2005-01.html XF skype-uri-bo(22848) Buffer overflow in Skype for Windows 1.1.x.0 through 1.4.x.83 allows remote attackers to execute arbitrary code via (1) callto:// and (2) skype:// links, or (3) a non-standard VCARD, possibly due to an underlying error in the SysUtils.WideFmtStr Delphi routine.