News Zoom bug allowed attackers to crack private meeting passwords

A lack of rate limiting on repeated password attempts allowed potential attackers to crack the numeric passcode used to secure Zoom private meetings as discovered by Tom Anthony, VP Product at SearchPilot.

"Zoom meetings are (were) default protected by a 6 digit numeric password, meaning 1 million maximum passwords," as Anthony discovered.

The vulnerability he spotted in the Zoom web client allowed attackers to guess any meeting's password by trying all possible combinations until...
Click to expand...
Zoom bug allowed attackers to crack private meeting passwords
 
Similar threads

Similar threads