Saturday, January 23, 03:27
Home security Zoom: Works to correct zero-day vulnerability

Zoom: Works to correct zero-day vulnerability

Zoom zero-day vulnerability

The teleconferencing software Zoom working for her repair of a zero-day vulnerability που was revealed from the company security ACROS Security.

The company said zero-day vulnerability affects him Zoom Windows client, but only when clients are running on old versions Windows OS, such as Windows 7, Windows Server 2008 R2 and older.

Zoom clients in Windows 8 or Windows 10 are not affected, according to ACROS Security CEO Mitja Kolsek.

"The vulnerability allows a remote intruder to execute code on computer of the victim where the Zoom Client for Windows is installed, making the user perform some standard action, such as opening a document ", said Kolsek.

"No security warning is displayed to the user during attack", He added.

Kolsek said ACROS did not discover the vulnerability on its own. She was informed by a security investigator who wanted to keep his identity secret.

ACROS reported zero-day vulnerabilities in Zoom and released an update to Zoom 0patch client to prevent attacks on its own customers until Zoom releases a formal patch. Below you can see one video, which shows how zero-day vulnerability can be exploited and how it is blocked by the 0patch client.

ACROS did not release further technical details vulnerability.

"Zoom takes all reports with potential security errors seriously. This morning we received a report on an issue that affects users running Windows 7 and earlier. "We have confirmed this issue and are currently working on a patch to resolve it quickly."

No information has yet been released on the release date.

In recent months, Zoom had stopped releasing new features to focus on improvements to enhance their security users, as various security issues were revealed in April.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

Intel CPUs Review: Core i7-10700 vs Core i7-10700K!

Over the years, the Intel series of processors (CPUs) introduced the series of overclocking models "K" and more recently the series ...

The DeLorean can return as an electric car

The DMC DeLorean has been out of production for almost 40 years, but it looks like the iconic vehicle will return as an electric car.

Windows RDP servers are used to support DDoS

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to reinforce the unwanted ...

SEPA: He refused to pay a ransom and thousands of files were leaked

Thousands of stolen files of the Scottish Environmental Protection Agency (SEPA) have been published by hackers, after the organization refused to pay the ransom ...

Fines at Valve, Capcom and Zenimax for geo-exclusion of games

Following a European Commission investigation, a group of video game publishers was fined € 7,8 million following allegations of geo-exclusion practices. In...

Bitcoin helps the middle class survive the pandemic

Regulators still imply that Bitcoin is just a tool for criminals, but it seems that for the middle class ...

Lightworks 2021.1 for Linux, Mac and Windows has been released

Lightworks Professional Multi-Platform Video Editing Software received the first major update to Lightworks 2021.1 for Windows, Linux and Mac.

Netflix: Watch the 9 best Anime movies of all time

One of the good things about the pandemic was that many people were introduced to the anime world. And the issue with anime is ...

CHwapi: Windows BitLocker "hit" the Belgian hospital!

The CHwapi hospital in Belgium was attacked by a cyber attack on January 17, with hackers claiming to have encrypted 40 servers and 100 ...

CPU / GPU Lotteries: Newegg sells the few on the market

Hardware shortages are not uncommon, but the pandemic has worsened the situation. The whole planet is closed to ...