August 15, 2022 02:57 pm
Original Link: https://www.theverge.com/2022/8/12/23303411/zoom-defcon-root-access-privilege-escalation-hack-patrick-wardle
The Zoom installer let a researcher hack his way to root access on macOS
Update August 15th, 10:55AM ET: Zoom has updated its Mac app to address the vulnerability, with version 5.11.5, which is available for download now.
A security researcher has found a way that an attacker could leverage the macOS version of Zoom to gain access over the entire operating system.
Details of the exploit were released in a presentation given by Mac security specialist Patrick Wardle at the Def Con hacking conference in Las Vegas on Friday. Some of the bugs involved have already been fixed by Zoom, but the researcher also presented one unpatched vulnerability that still affects systems now.
The exploit works by targeting the installer for the Zoom application, which needs to run with special user permissions in order to install...
Original Link: https://www.theverge.com/2022/8/12/23303411/zoom-defcon-root-access-privilege-escalation-hack-patrick-wardle
Share this article:
Tweet
View Full Article
The Verge
The Verge is an ambitious multimedia effort founded in 2011More About this Source Visit The Verge