From reading the news and Twitter I just assumed someone found a Zoom RCE. Turns out, no. Bug 1: clickable links are in fact clickable Bug 2 & 3: if an attacker already has access to your machine, they can do bad things.
-
-
Are you saying exploit.bat executes without any secondary confirmation? Given that a lot of corporate VPNs restrict 445 egress and most of the major ISPs in the US also block 445 egress, I'm in the "way too overhyped and not really a bug in zoom, just windows being windows" camp
-
Yes, I am saying that. I think this is a real bug, just very poorly explained. The NTLM vector shouldn't even have been mentioned, that just confused everyone.
- 16 more replies
New conversation -
-
-
That's a way better example than the given one of leaking NTLMv2s. But either way, it requires user interaction and I honestly don't think it's worth PR blitzing Zoom in the middle of a Crisis where businesses are relying on them to function.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
