Fwd: [CIVN-2020-0276] Remote Code Execution Vulnerability in Zoom Video Conferencing Application

1 year ago 74

Severity Rating:  High

Systems Affected           

Zoom's Windows client version prior to version 5.1.3 (28656.0709)

Overview

A vulnerability has been reported in the Zoom video conferencing

application running on Windows 7 and earlier Windows versions which could

allow a remote attacker to execute arbitrary code on the targeted system.

Description

This vulnerability exists in the Zoom video conferencing application

running on Windows 7 and earlier versions of Windows. A remote attacker

could exploit this vulnerability by enticing the user to execute a

specially crafted file.

Successful exploitation of this vulnerability could allow the attacker to

execute arbitrary code on the target system.

Solution

Apply appropriate security updates as mentioned in the following link:

Vendor:

Zoom

References

Zoom

OPatch Blog

Threatpost

The Hacker News

About Cert Advisory

Related Posts

Read Entire Article