CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9948

A stack buffer overflow vulnerability has been discovered in Microsoft Skype 7.2, 7.35, and 7.36 before 7.37, involving MSFTEDIT.DLL mishandling of remote RDP clipboard content within the message box.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.053

EPSS Ranking 89.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

http://www.securityfocus.com/bid/99281
https://www.vulnerability-db.com/?q=articles/2017/05/28/stack-buffer-overflow-zero-day-vulnerability-uncovered-microsoft-skype-v72-v735
https://www.vulnerability-lab.com/get_content.php?id=2071
https://www.vulnerability-lab.com/get_content.php?id=2084
http://www.securityfocus.com/bid/99281
https://www.vulnerability-db.com/?q=articles/2017/05/28/stack-buffer-overflow-zero-day-vulnerability-uncovered-microsoft-skype-v72-v735
https://www.vulnerability-lab.com/get_content.php?id=2071
https://www.vulnerability-lab.com/get_content.php?id=2084

Products affected by CVE-2017-9948

Microsoft » Skype » Version: 7.2

cpe:2.3:a:microsoft:skype:7.2
Microsoft » Skype » Version: 7.35

cpe:2.3:a:microsoft:skype:7.35
Microsoft » Skype » Version: 7.36

cpe:2.3:a:microsoft:skype:7.36

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9948

Products

Pricing

Contact Us