CVE-2005-3267

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1460%

EPSS Percentile29.50th

PublishedOct 27, 2005

Last ModifiedApr 16, 2026

Vulnerability Description

Integer overflow in Skype client before 1.4.x.84 on Windows, before 1.3.x.17 on Mac OS, before 1.2.x.18 on Linux, and 1.1.x.6 and earlier allows remote attackers to cause a denial of service (crash) via crafted network data with a large Object Counter value, which leads to a resultant heap-based buffer overflow.

Affected Platforms (CPE)

📦

Skype Technologies

Skype

= 0.92.0.12

📦

Skype Technologies

Skype

= 0.93.0.3

📦

Skype Technologies

Skype

= 0.98.0.04

📦

Skype Technologies

Skype

= 1.0.0.1

📦

Skype Technologies

Skype

= 1.0.0.7

📦

Skype Technologies

Skype

= 1.0.0.9

📦

Skype Technologies

Skype

= 1.0.0.10

📦

Skype Technologies

Skype

= 1.0.0.18

📦

Skype Technologies

Skype

= 1.0.0.29

📦

Skype Technologies

Skype

= 1.0.0.94

📦

Skype Technologies

Skype

= 1.0.0.97

📦

Skype Technologies

Skype

= 1.0.0.100

📦

Skype Technologies

Skype

= 1.1.0.0

📦

Skype Technologies

Skype

= 1.1.0.20

📦

Skype Technologies

Skype

= 1.1.06

📦

Skype Technologies

Skype

= 1.2.0.17

📦

Skype Technologies

Skype

= 1.3.0.16

📦

Skype Technologies

Skype

= 1.4.0.83

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=113026202728568&w=2

🔗 http://secunia.com/advisories/17305/

🔗 http://securityreason.com/securityalert/115

🔗 http://skype.com/security/skype-sb-2005-03.html

🔗 http://www.kb.cert.org/vuls/id/905177

🔗 http://www.osvdb.org/20306

🔗 http://www.securityfocus.com/bid/15192

🔗 http://www.vupen.com/english/advisories/2005/2197

Vulnerability Description

Affected Platforms (CPE)

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

Skype

References & Advisories

Related Vulnerabilities