oval:org.mitre.oval:def:26506

Definition Id: oval:org.mitre.oval:def:26506

Oval ID:	oval:org.mitre.oval:def:26506
Title:	Cross-zone scripting vulnerability
Description:	Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.1 through 3.6.0.244 on Windows allows remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Full Name field of a reviewer of a business item entry, accessible through (1) the SkypeFind dialog and (2) a skype:?skypefind URI for the skype: URI handler.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0582	Version:	3
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows 8.1	Product(s):	Skype
Definition Synopsis:
Skype is installed AND Check if Skype file version is greater than or equal to 3.1.0.0 AND Check if Skype file version is less than or equal to 3.6.0.244

Definition Id: oval:org.mitre.oval:def:11875

Oval ID:	oval:org.mitre.oval:def:11875
Title:	Skype is installed
Description:	Skype is installed
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:microsoft:skype	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows 8.1	Product(s):	Skype
Definition Synopsis:
Check whether Skype is installed
Referenced By:
oval:org.mitre.oval:def:26506