cancel
Showing results for 
Search instead for 
Did you mean: 
amardeep
Level 9

Skype False Positives

Jump to solution

Hi Team,

In our latest scan report I see lot of servers reporting Skpye related vulnerabilities like "Skype file: URI Handler Vulnerability" and "Skype URI Handling "/Datapath" Vulnerability" etc. I have checked and we don't have Skype installed on any of these servers. Does Foundstone report these as False positives or there is something I may be missing at?

Any help much appriciated.

Thanks,

Amar Deep Singh

Mckinsey&Company

0 Kudos
1 Solution

Accepted Solutions
cgrim
Level 13

Re: Skype False Positives

Jump to solution

Hi Amardeep,

it was:

  * FID #8183 Skype URI Handling "/Datapath" Vulnerability

    FASLScript is updated

If you're running w/ the latest content, then I suggest you open the SR to investigate.

Thanks!
Cathy

0 Kudos
4 Replies
cgrim
Level 13

Re: Skype False Positives

Jump to solution

There was one resolved FP w/ a Skype script in the FSL Content release on Feb-24 - make sure you're runing with the latest Content.

If you have a suspected False Positive, please open a Service Request, and follow the below KB Article:

https://kc.mcafee.com/corporate/index?page=content&id=KB55996

I hope that helps!
Cathy

0 Kudos
amardeep
Level 9

Re: Skype False Positives

Jump to solution

Hello Cathy,

Thanks for your response. Could you share the details of the FP that was fixed? I have latest content running on my VM.

Thanks,

Amar Deep Singh

0 Kudos
cgrim
Level 13

Re: Skype False Positives

Jump to solution

Hi Amardeep,

it was:

  * FID #8183 Skype URI Handling "/Datapath" Vulnerability

    FASLScript is updated

If you're running w/ the latest content, then I suggest you open the SR to investigate.

Thanks!
Cathy

0 Kudos
amardeep
Level 9

Re: Skype False Positives

Jump to solution

Great. So this is one of the Vulnerabilities out of the 2 which I mentioned in my start post. Seems I have to open a SR now.

Thanks,

Amar Deep

0 Kudos