Using Zoom? High level of vulnerability noticed in video conferencing application; update app

By: |
July 17, 2020 8:57 PM

The Computer Emergency Response Team of India (CERT-In) said the severity rating of this vulnerability is "high" and advised users to update the app and its security by visiting the Zoom support service website. 

Zoom had last month released an enhanced and encrypted version of the application in order to ensure protection and privacy of personal information.

A vulnerability has been noticed in the Zoom video conferencing application for Windows 7 and earlier versions that could allow an attacker to remotely execute arbitrary code on the targeted system, a national cyber security agency said on Friday. The Computer Emergency Response Team of India (CERT-In) said the severity rating of this vulnerability is “high” and advised users to update the app and its security by visiting the Zoom support service website.

“The vulnerability has been reported in the Zoom video conferencing application running on Windows 7 and earlier Windows versions which could allow a remote attacker to execute arbitrary code on the targeted system,” the advisory said. It said a remote attacker could exploit this vulnerability by enticing the user to execute a specially crafted file.

“Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code on the target system,” said the CERT-In, the national technology arm to combat cyber attacks and guard the Indian cyber space.

The popular video conferencing platform had last month released an enhanced and encrypted version of the application in order to ensure protection and privacy of personal information.

The application had seen a mega jump in downloads after work from home become a norm for numerous office goers and professionals due to the COVID-19 outbreak and the resulting nationwide lockdown.

In April, the Union home ministry had said that the Zoom meeting platform was not safe and it was not to be used for official purposes by government officials. Such a warning was also issued by the CERT-In and was reiterated by the Cyber Coordination Centre (CyCord) of the home ministry.

Get live Stock Prices from BSE, NSE, US Market and latest NAV, portfolio of Mutual Funds, Check out latest IPO News, Best Performing IPOs, calculate your tax by Income Tax Calculator, know market’s Top Gainers, Top Losers & Best Equity Funds. Like us on Facebook and follow us on Twitter.

Financial Express is now on Telegram. Click here to join our channel and stay updated with the latest Biz news and updates.

Next Stories
1Nothing launches its first product, the aggressively priced Ear (1) earbuds with one-of-its-kind transparent design
2Intel Accelerated: Intel lays down 5-year roadmap for upcoming products to reclaim chipmaking industry leadership
3Pegasus spyware: WhatsApp CEO wants Apple to do more to ensure privacy of iPhone users