Manzana has released a "software" update for their Mac computers that removes the vulnerable component of the application from video conferencing Zoom, which allowed anyone to access the camera of another device without permission.
The company has confirmed to TechCrunch that it has released an update that removes the server that had silently installed Zoom on Mac devices. It supported the function of inviting video calls by links presented by the vulnerability.
The decision of the company comes after the publication of Jonathan Leitschuh that revealed that any website could add a user to a call of Zoom, with its video camera activated, without the user's permission. According to Leitsuch, the web server is not documented remained installed even when the user had deleted Zoom, allowing to reinstall the application without requiring user interaction.
Now, according to Apple, the update will be done automatically and will not require the intervention of the user. It will protect all Mac users of this vulnerability, both those who have already deleted the application, and those who still have it downloaded to the computer, without affecting the operation of the Zoom application. The update of Apple will suppose that the permission to the user is requested the entrance in the application of Zoom, so that the user will have the control on the use of the camera.