Networking

07:33 PM
Connect Directly
RSS
E-Mail
50%
50%

VoIP Darling Skype Divulges Flaws In All Clients

Skype has acknowledged all its VoIP clients suffer from bugs that leave machines susceptible to crashes and/or open them to attacks that could take control of the computers.

Skype acknowledged Tuesday that all its VoIP (Voice over Internet Protocol) clients suffer from bugs that leave machines susceptible to crashes and/or open them to attacks that could take control of the computers. But even as it patched the software, one analyst questioned how the popular service carried out the fix.

The flaws, which were reported by Danish vulnerability tracker Secunia and judged a "Highly critical" problem, involve the Windows, Linux, Mac OS X, and Pocket PC versions of the Skype client.

But even as Skype released patches for all but the bug in Pocket PC, Lawrence Orans, a research director at Gartner and an expert on VoIP security, questioned the company's ability to deliver a secure network.

"Earlier this year, when Microsoft's instant messenger client was vulnerable, Microsoft shut down [MSN] and then when users tried to connect, required them to update to a patched client. Microsoft essentially did our vulnerability management for us," said Orans.

Not so with Skype. When TechWeb launched a vulnerable version of the Windows client Tuesday, Skype did not require an update to connect to its network. Nor did it offer the fixed version when the client's "Check for Update" feature was selected, but instead presented another vulnerable edition.

Previous
1 of 5
Next
Comment  | 
Print  | 
More Insights
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
2014 Private Cloud Survey
2014 Private Cloud Survey
Respondents are on a roll: 53% brought their private clouds from concept to production in less than one year, and 60% ­extend their clouds across multiple datacenters. But expertise is scarce, with 51% saying acquiring skilled employees is a roadblock.
Video
Twitter Feed