Security: Vulnerabilities in Skype app for iOS 22 September 2011Posted by computeraholic in Uncategorized.
SuperEVR has discovered a serious security bug in the Skype app for iOS. Skype for iOS contains an XSS vulnerability that allows attackers steal information.
As the reports in its blog, XSS, remote access to the contacts of a Skype user is short about a so-called cross-site scripting vulnerability, possible, if the app uses for calls and Messaging. Attackers can currently unchallenged access to the contact database in the iPhone.
Attack on a chat message
A second vulnerability exists in WebKit