UNC Path Link Security Bypass Vulnerability in Skype for Business and Lync

UNC Path Link Security Bypass Vulnerability in Skype for Business and Lync

CVE-2018-8238 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.

Learn more about our Web Application Penetration Testing UK.