Zoom patches vulnerability chain that could lead to remote code execution

Friday, 24 March, 2023

Zoom patches vulnerability chain that could lead to remote code execution

<p>Zoom users should update to version 5.10.0 to fix a number of security flaws discovered by Google Project Zero security researcher Ivan Fratric. Clients were prompted to connect to a man-in-the-middle server that served up an old version of the Zoom client from mid-2019 after receiving a specially crafted message. Zoom also discovered a technique to send user session cookies to a non-Zoom site, which could allow for spoofing, according to its security alert.</p> <p> </p>

Read full story at Zdnet

Tags:

Categories

Zoom patches vulnerability chain that could lead to remote code execution

Also Read

Leaked Black Basta Chat Logs Reveal Ransomware Gang's Inner Workings

Apple Removes iCloud End-to-End Encryption for UK Users Following Government Demand

Global Security Concerns Lead Nations to Restrict DeepSeek AI App Usage

CISA Election Security Officials Placed on Leave Amid Internal Review

Cisco Hacked: Cyberattack Exposes Sensitive Data Amid Security Breach

XE Hacker Group Exploits VeraCore Zero-Day Vulnerability for Cyber Attacks

Hackers Exploit Google Tag Manager To Inject Malicious Code, Steal Data

LLM Hijackers Target DeepSeek V3 Model, Raising AI Security Concerns

Australia Bans DeepSeek AI on Government Devices Over Security Concerns

Subscribe To Our Newsletter.