Apple solves the safety issue generated by Zoom
The company upgraded the software of its Mac computers that were affected by the vulnerability of the video call application
Apple released a software update for their Mac computers that removes the vulnerable component of Zoom videoconferencing application, which allowed free access to the camera of another device without permission.
This was confirmed by the company, which added that the update removed the server that had installed silently Zoom in Mac devices and which supported the function of inviting video calls for links that presented the vulnerability.
This resulted after Jonathan Leitschuh’s publication through which he revealed that any website could add a user to a Zoom call, with its video camera activated, without the user’s permission. According to Leitsuch, the undocumented web server remained installed even when the client had deleted Zoom, allowing reinstalling the application without requiring user’s interaction.
According to Apple, the update will be done automatically and will not require the intervention of the user. It will protect all Mac owners from this vulnerability, both those who have already deleted the application and those who still have it downloaded to the computer, without affecting the operation of the Zoom application.
The update of Apple will suppose that the permission to the user is requested when accessing the application, so that the user will have the control on the camera.
K. Tovar
Source: Hipertextual
