<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Dear Dev,<br>
<br>
this topic has arisen on tonight's EURALO monthly call. <br>
Since ICANN pulled out Adobe Connect on Security Issues in the not
so distant past, our European users are asking what is ICANN's
evaluation of this vulnerability - with request for an URGENT
response as a matter of priority as Zoom is ICANN's primary means of
Conferencing these days.<br>
Kindest regards,<br>
<br>
Olivier<br>
<br>
<div class="moz-cite-prefix">On 09/07/2019 05:58, Dev Anand
Teelucksingh wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAKcdk9MGQHxzUesB6FxJdA2n=GCJHzrJDVr9Wwu99bX4_UVATg@mail.gmail.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="auto">
<h2 class="m_-6447273514378793210bg m_-6447273514378793210df
m_-6447273514378793210hp m_-6447273514378793210hq
m_-6447273514378793210bl"
style="box-sizing:inherit;margin:0px;font-family:medium-content-sans-serif-font,"Lucida
Grande","Lucida Sans Unicode","Lucida
Sans",Geneva,Arial,sans-serif;color:rgba(0,0,0,0.541176);font-weight:300;font-size:24px;line-height:32px">
<p class="p1"
style="margin:0px;font-stretch:normal;font-size:23px;line-height:normal;font-family:".SF
UI Display";color:rgb(69,69,69)">A vulnerability in the
Mac Zoom Client allows any malicious website to enable your
camera without your permission.</p>
<p class="p1"
style="margin:0px;font-stretch:normal;font-size:23px;line-height:normal;font-family:".SF
UI Display";color:rgb(69,69,69)"><br>
</p>
</h2>
<div dir="auto"><span style="color:rgba(0,0,0,0.541176)">Read
the medium blog post by Jonathan</span> <span
style="color:rgba(0,0,0,0.541176)">Leitschuh</span></div>
</div>
<div dir="auto"><a
href="https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5"
target="_blank" moz-do-not-send="true">https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5</a></div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
ttf mailing list
<a class="moz-txt-link-abbreviated" href="mailto:ttf@atlarge-lists.icann.org">ttf@atlarge-lists.icann.org</a>
<a class="moz-txt-link-freetext" href="https://mm.icann.org/mailman/listinfo/ttf">https://mm.icann.org/mailman/listinfo/ttf</a>
_______________________________________________
By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (<a class="moz-txt-link-freetext" href="https://www.icann.org/privacy/policy">https://www.icann.org/privacy/policy</a>) and the website Terms of Service (<a class="moz-txt-link-freetext" href="https://www.icann.org/privacy/tos">https://www.icann.org/privacy/tos</a>). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
Olivier MJ Crépin-Leblond, PhD
<a class="moz-txt-link-freetext" href="http://www.gih.com/ocl.html">http://www.gih.com/ocl.html</a>
</pre>
</body>
</html>