Security vulnerabilities in Zoom
The popular video conferencing solution Zoom is currently affected by two serious security vulnerabilities. Users and administrators are asked to apply the important updates promptly.
There are two security holes in virtually all versions of the Zoom conferencing software. As Heise reports, the higher-risk leak allows a buffer overflow, allowing attackers to crash the service or execute arbitrary code on a target machine.
The second vulnerability could be exploited to open a barn door in the process memory. Theoretically, it would be possible for attackers to gain insight into sensitive information.
However, Zoom seems to have already made improvements. On the download page of the provider you can find among the security bulletins already the updates of the different versions. Quite a few versions are affected, including the Android and macOS versions, for example.
Users can find the latest client versions as well as the controller for Zoom Rooms on the official download page.
Administrators and users are advised to update the affected versions promptly.
Source: Heise.de
