Zoom patches vulnerability chain that could lead to remote code execution

Friday, 24 March, 2023

Zoom patches vulnerability chain that could lead to remote code execution

<p>Zoom users should update to version 5.10.0 to fix a number of security flaws discovered by Google Project Zero security researcher Ivan Fratric. Clients were prompted to connect to a man-in-the-middle server that served up an old version of the Zoom client from mid-2019 after receiving a specially crafted message. Zoom also discovered a technique to send user session cookies to a non-Zoom site, which could allow for spoofing, according to its security alert.</p> <p> </p>

Read full story at Zdnet

Tags:

Categories

Zoom patches vulnerability chain that could lead to remote code execution

Also Read

Horizon3.ai Raises $100M to Advance Autonomous Cybersecurity Solutions

China Accuses Taiwan’s Ruling Party of Backing Cyberattack on Tech Firm

Operation Endgame: EU, US, and Allies Dismantle Global Malware Network in Major Cybercrime Crackdown

DOJ Launches Criminal Probe into Coinbase Cyberattack Involving Insider Bribery and Data Theft

Star Health Faces CXO Exodus Amid Data Breach Fallout and Cybersecurity Probe

Microsoft Offers to Unbundle Teams from Office to Address EU Antitrust Concerns

Kids Online Safety Act Reintroduced: Major Tech Firms Back Bill Aiming to Protect Minors Online

Maharashtra CM Fadnavis Stresses Cybersecurity Amid Rising Indo-Pak Tensions

Kimsuky APT Group Deploys Sophisticated Phishing Tactics Targeting Cryptocurrency Wallets

Subscribe To Our Newsletter.