Zoom Mac users need to upgrade once more.
This week, Zoom corrected a flaw in its Mac auto-update tool that might grant malicious users root access. On Wednesday, Zoom released a follow-up patch, indicating that the initial repair may have been circumvented.
Users of Zoom should install and utilise the August 17-released version 5.11.6 (9890) on macOS. For updates, you can also look at Zoom’s menu bar. If you wait for an automatic update while this issue is known to the public, you might have to wait days.
Csaba Fitzl, also known as theevilbit of Offensive Security, a macOS security researcher, disclosed Zoom’s insufficient remedy. The day before Fitzl tweeted about it, Zoom acknowledged Fitzl in its security bulletin (ZSB-22019) and released a patch.
Neither Fitzl nor Zoom explained how Fitzl was able to get around the patch for the flaw that Patrick Wardle, the creator of the Objective-See Foundation, first identified. Wardle discussed Zoom’s auto-update utility’s ability to maintain its privileged status to install Zoom packages yet be deceived into checking other packages at Def Con last week. As a result, bad actors might utilise it to degrade Zoom in order to improve their access to the system’s exploits or even to acquire root access.
Flaunt Weeekly Flaunt Weeekly More than three years later, Universal Music Group (UMG) and the…
Flaunt Weeekly Around the world, it’s time for year-end school concerts and Haiti is no…
Flaunt Weeekly There was Pasternak. Photo Courtesy of Ada Pasternak.Singer-songwriter and multi-instrumentalist Ada Pasternak released…
Flaunt Weeekly PRESIDENT Michael D Higgins has paid tribute to the father of a member…
Flaunt Weeekly Hozier returned to Saturday Night Live for the NBC program’s final pre-Christmas episode…
Flaunt Weeekly Chappell Roan, Charli xcx and Billie Eilish have all made Billboard’s 10 Greatest…