#VU62279 Spoofing attack in Skype for Business Server
Vulnerability identifier: #VU62279
Vulnerability risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-451
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Skype for Business Server
Server applications /
Conferencing, Collaboration and VoIP solutions
Vendor: Microsoft
Description
The vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of user-supplied data in Skype for Business and Lync. A remote attacker can make a specially crafted network call to the target Skype for Business server and disclose IP addresses or port numbers.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Skype for Business Server: 2015 CU12 - 2019 CU6
External links
http://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26910
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
