• MacOS : The Zoom installer let a researcher hack his way to root access

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » MacOS : The Zoom installer let a researcher hack his way to root access

    Author
    Topic
    #2470093

    https://www.theverge.com/2022/8/12/23303411/zoom-defcon-root-access-privilege-escalation-hack-patrick-wardle

    Zoom has issued a patch, but the researcher says it’s incomplete

    A security researcher has found a way that an attacker could leverage the macOS version of Zoom to gain access over the entire operating system.

    Details of the exploit were released in a presentation given by Mac security specialist Patrick Wardle at the Def Con hacking conference in Las Vegas on Friday. Some of the bugs involved have already been fixed by Zoom, but the researcher also presented one unpatched vulnerability that still affects systems now.

    The exploit works by targeting the installer for the Zoom application, which needs to run with special user permissions in order to install or remove the main Zoom application from a computer. Though the installer requires a user to enter their password on first adding the application to the system, Wardle found that an auto-update function then continually ran in the background with superuser privileges

    The result is a privilege escalation attack, which assumes an attacker has already gained initial access to the target system and then employs an exploit to gain a higher level of access

    Viewing 0 reply threads
    Author
    Replies
    Viewing 0 reply threads
    Reply To: MacOS : The Zoom installer let a researcher hack his way to root access

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information: