4 comments

[ 73.3 ms ] story [ 470 ms ] thread
A remote exploit in the Skype application that allows account theft is `minor', because, ``as you can imagine, someone who you deal with frequently is probably unlikely to take advantage of this bug anyways.''

Give me a moment to collect my jaw from the floor.

welcometo: http://www.fullmalls.com The website wholesale for many kinds of fashion shoes, like the nike,jordan,prada,, also including the jeans,shirts,bags,hat and the decorations. All the products are free shipping, and the the price is competitive, and also can accept the paypal payment.,after the payment, can ship within short time. free shippingcompetitive priceany size availableaccept the paypal ===== http://www.fullmalls.com =====

jordan shoes $32nike shox $32Christan Audigier bikini $23 Ed Hardy Bikini $23Smful short_t-shirt_woman $15ed hardy short_tank_woman $16Sandal $32christian loubo utin $80 Sunglass $15 COACH_Necklace $27handbag $33AF tank woman $17puma slipper woman $30

===== http://www.fullmalls.com =====

===== http://www.fullmalls.com =====

===== http://www.fullmalls.com =====

===== http://www.fullmalls.com =====

===== http://www.fullmalls.com =====

I take it MS must have bought a Forbes ad?
My favorite part of this is that for some reason, the HTML document they're using to display (unsanitized) user details in the Skype application has a cookie set that contains the logged in user's login token. Why is that even necessary to display another user's profile?