Zoom ZeroDay Vulnerability in Windows 7 - ThreatWire CrossPost
Added 2020-07-14 17:44:35 +0000 UTCBy Shannon Morse, ThreatWire
Cybersecurity firm ACROS Security has disclosed a zero day in Zoom for Windows 7 and older operating systems. While many users listening to this episode are probably using frequently updated machines, many companies have struggled to update their users en masse, leading to older operating system usage and opening up users to potential attacks. Windows 8 and 10 aren’t affected.
This zero day in particular can allow for an attacker to gain access to files on a vulnerable machine, using Zoom software as their attack vector. An attacker could do a hostile takeover of the machine if the target user is a local administrator. The attacker could be remote, executing arbitrary code on the target machine in which a Zoom client is installed. It would require user interaction such as opening a document.
On Thursday, Zoom reported that a patch is being released for this flaw and it’s recommended to update as soon as possible, as the patch is available via client version 5.1.3. While this patch is released, ACROS is not releasing technical details about the vulnerability at this time.
Register here to watch my keynote for #GRIMMcon 0x2! https://www.grimm-co.com/grimmcon-0x2
Support me on alternative platforms! https://snubsie.com/support
Shop ThreatWire Merch Directly! - https://snubsie.com/shop
Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24
http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel!
ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire
Links:
https://blog.0patch.com/2020/07/remote-code-execution-vulnerability-in.html
https://thehackernews.com/2020/07/zoom-windows-security.html
https://threatpost.com/unpatched-zoom-bug-rce/157317/
https://www.zdnet.com/article/zoom-working-on-patching-zero-day-disclosed-in-its-windows-client/
