Zoom fixes most dangerous meeting bug on Apple macOS


New Delhi, Aug 15 (IANS): Online video collaboration platform Zoom has fixed the most dangerous bug on Apple macOS that could allow hackers to take control of users' operating system when they open the meeting app.

The company said in a security update that the Zoom client for meetings for macOS, starting with version 5.7.3 and before 5.11.5, "contains a vulnerability in the auto update process".

"A local low-privileged user could exploit this vulnerability to escalate their privileges to root," said the company,

Zoom acknowledged the issue (CVE-2022-28756) and said it has issued a fix in version 5.11.5 of the app on Mac, which users can now download.

Earlier, a security researcher found a way that an attacker could leverage the macOS version of Zoom to gain access over the entire operating system.

According to The Verge, details of the exploit were released in a presentation by Mac security specialist Patrick Wardle at the Def Con hacking conference in Las Vegas last week.

Zoom earlier fixed some of the bugs involved but the most dangerous one was still left on macOS, which has now been fixed.

The exploit worked by targeting the installer for the Zoom application, which needs to run with special user permissions to install or remove the main Zoom application from a computer.

 

  

Top Stories


Leave a Comment

Title: Zoom fixes most dangerous meeting bug on Apple macOS



You have 2000 characters left.

Disclaimer:

Please write your correct name and email address. Kindly do not post any personal, abusive, defamatory, infringing, obscene, indecent, discriminatory or unlawful or similar comments. Daijiworld.com will not be responsible for any defamatory message posted under this article.

Please note that sending false messages to insult, defame, intimidate, mislead or deceive people or to intentionally cause public disorder is punishable under law. It is obligatory on Daijiworld to provide the IP address and other details of senders of such comments, to the authority concerned upon request.

Hence, sending offensive comments using daijiworld will be purely at your own risk, and in no way will Daijiworld.com be held responsible.