• Zoom Update Bypasses Security

    Home » Forums » Social media – Tools, Configuring privacy options » Zoom Update Bypasses Security

    • This topic has 5 replies, 5 voices, and was last updated 5 years ago.

    Tags:

    Author
    Topic
    Casey H
    AskWoody Plus
    April 8, 2020 at 8:07 pm #2232001

    Greetings All-

    I’m not sure if this is the right place to post this or not.  After downloading and installing the ZOOM teleconferencing software, I participated in a Zoom conference session.  After I exited the conference, there was a message on my desktop saying there was an update to the Zoom program.  I clicked on the install button and the program completed its update without any further intervention on my part.

    This was done on a standard user account.  I was expecting at some point that I would be asked for the admin password. This did not happen.  Every other program I’ve updated demands a password at some point.  I don’t understand how this update was allowed to install without it.  It would seem that Zoom somehow managed to bypass normal Security measures.

    Operating system is the latest version of WIN 10 Pro 1909.  Any insights would be appreciated.  Thanks.

    Casey H.

    1 user thanked author for this post.
    jburk07
    Reply | Quote
    Viewing 3 reply threads
    Author
    Replies
    • Alex5723
      AskWoody Plus
      April 9, 2020 at 2:19 am #2232059
      Casey H wrote:

      It would seem that Zoom somehow managed to bypass normal Security measures.

      Yes, it does.

      See https://www.askwoody.com/forums/topic/patch-lady-should-we-be-concerned-about-zoom/#post-2232057

      3 users thanked author for this post.
      Mr. Austin, jburk07, Casey H
      Reply | Quote
    • steeviebops
      AskWoody Plus
      April 9, 2020 at 5:13 am #2232075

      A lot of applications nowadays install into the user’s AppData folder to bypass the need for admin rights. I don’t know if it’s the case for Zoom (I’ve never used it) but definitely for Teams, and Chrome used to do it in its early days.

      2 users thanked author for this post.
      jburk07, Casey H
      Reply | Quote
      • mn–
        AskWoody Lounger
        April 9, 2020 at 1:46 pm #2232165
        steeviebops wrote:

        I don’t know if it’s the case for Zoom

        It is. (For the Windows version at least.)

        And somehow this is a “feature” that some people consider a good thing, too.

        Linux version (checked .deb 64bit) does at least something right in that most of the stuff goes under /opt… and needs admin rights for installing … but then again it includes its own copies of lots of libraries in there, and with their track record I’m not particularly confident about the quality of those copies.

        1 user thanked author for this post.
        jburk07
        Reply | Quote
    • Casey H
      AskWoody Plus
      April 9, 2020 at 9:25 am #2232103

      Thanks all.  Interesting stuff.  I had been thinking that privacy issues weren’t an issue for my use.  Although our meeting content at times can be highly personal, it’s not really what you would call sensitive.  The ability to install stuff without my specific consent is another matter.  I think I’ll try something else.

      Casey H.

      Reply | Quote
    • dluchau
      AskWoody Lounger
      April 9, 2020 at 4:00 pm #2232222

      if you download the web installer *.exe as it will allow updates (it used to auto update).  We deploy it with the *.msi to the AppData folder and adjust settings to prevent automatic/user involved updates.  This method supports CM.

      1 user thanked author for this post.
      Mr. Austin
      Reply | Quote
    Viewing 3 reply threads
    Reply To: Zoom Update Bypasses Security

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    April 2025
    S M T W T F S
     12345
    6789101112
    13141516171819
    20212223242526
    27282930  

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.