Vulnerability Details : CVE-2017-6517
Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. This vulnerability exists due to the way .dll files are loaded by Skype. It allows an attacker to load a .dll of the attacker's choosing that could execute arbitrary code without the user's knowledge.The specific flaw exists within the handling of DLL (api-ms-win-core-winrt-string-l1-1-0.dll) loading by the Skype.exe process.
Vulnerability category: Execute code
Products affected by CVE-2017-6517
- cpe:2.3:a:microsoft:skype:7.16.0.102:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-6517
8.50%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-6517
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2017-6517
-
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-6517
-
https://twitter.com/vysecurity/status/845013670103003138
Vincent Yiu on Twitter: "Totes "hi can you put this dll in your Skype folder and run skype?"… "Press/Media Coverage
-
http://www.securityfocus.com/bid/96969
Skype CVE-2017-6517 DLL Loading Local Code Execution VulnerabilityThird Party Advisory;VDB Entry
-
https://twitter.com/tiger_tigerboy/status/755332687141883904
Sachin Wagh on Twitter: "One more Hit. Finally Microsoft. Listed in Microsoft Hall of Fame (June 2016 Security Researchers).… "Press/Media Coverage
-
http://seclists.org/fulldisclosure/2017/Mar/44
Full Disclosure: Skype Insecure Library Loading Vulnerability (api-ms-win-core-winrt-string-l1-1-0.dll)Mailing List;Third Party Advisory
-
http://packetstormsecurity.com/files/141650/Skype-7.16.0.102-DLL-Hijacking.html
Skype 7.16.0.102 DLL Hijacking ≈ Packet StormExploit;Third Party Advisory;US Government Resource
-
http://www.securitytracker.com/id/1038209
Microsoft Skype Library Loading Bug Lets Remote Users Execute Arbitrary Code on the Target System in Certain Cases - SecurityTracker
-
https://technet.microsoft.com/security/cc308575.aspx
Security Researcher Acknowledgments for Microsoft Online Services - Prior MonthsNot Applicable
Jump to