Early this year we were participating in a bug bounty event in Singapore that had Zoom in scope. Always wanting to hack on a web conferencing tool we started looking at the clients on the flight. Two days later we had RCE.
This presentation will walk through our journey reverse engineering the macOS Zoom client and discovering a serious flaw that would result in zero interaction remote code execution. This bug would have been possible to exploit on a large scale remotely via the web.
We will detail a number of processes and tools we use to reverse engineer Objective-C apps and common techniques to exploit macOS apps that can be applied across a number of applications beyond Zoom
