Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website! - rwth-security - lists.rwth-aachen.de

9 Jul 2019


      Hallo zusammen,
sofern nicht selber schon gesehen/-lesen hier [0] FYI
"Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!"
"... A vulnerability in the Mac Zoom Client allows any malicious website to enable your camera without your permission ..."
Dazu passend auf TWitter gefunden
• Drag the Zoom app to the trash
Then in Terminal:
    	• lsof -i :19421 (to get the PID)
    	• kill -9 [PID] (this kills the crab)
    	• rm -rf ~/.zoomus (gtfo)
    	• touch ~/.zoomus (and stay out)
VG
Bernd
[0]
https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe...
-- 

Bernd Kohler

IT Center
Abteilung: Netze
RWTH Aachen University
Wendlingweg 10
52074 Aachen
Tel: +49 241 80-29793
Fax: +49 241 80-22666
kohler@itc.rwth-aachen.de
https://www.itc.rwth-aachen.de