Major security flaw found in EA Origin gaming client

guest · Apr 16, 2019

Major security flaw found in EA Origin gaming client
April 16, 2019
https://www.techradar.com/news/major-security-flaw-found-in-ea-origin-gaming-client

Electronic Arts’ PC gaming platform, Origin has been found to have a security vulnerability that allows hackers to trick users of the service into opening and running malicious software on their system.

As reported by TechCrunch, it was possible to trick the desktop app to run any program on the user’s computer when clicking on a custom link, which in turn could allow hackers to run certain commands on their system and download malicious programs such as malware.

What’s more, the link doesn’t even need to be explicitly clicked on for the Origin client to execute it, with the ability of a script to open the problematic link when a user visits another unrelated page.
Mac users can breathe easy as the vulnerability never affected that version of the client.
Click to expand...

guest · May 25, 2019

Zero-day in EA’s Origin exposes gamers to yet more RCE pwnage
Qt framework exploited to take full control of Windows devices
May 24, 2019
https://portswigger.net/daily-swig/zero-day-in-eas-origin-exposes-gamers-to-yet-more-rce-pwnage

EA’s Origin gaming client can be exploited to allow an attacker take complete control of Windows devices.
In a technical blog post published earlier this week, independent security researcher @zer0pwn demonstrated how a URI argument injection flaw in Qt – the open source GUI toolkit behind Origin – could be leveraged to force the gaming client to load a backdoored plugin.

The technique employed by the 21-year-old is partly based on previous research, and once again highlights the dangers of poorly implemented custom URI schemes.
In developing his proof of concept, zer0pwn used a Windows 8 box running Internet Explorer 11.

Here, a specially crafted URI is launched via an iframe, meaning victims simply need to be fooled into clicking on a malicious link for an attacker to gain remote code execution (RCE) and take full control of their device.
Click to expand...

Rasheed187 · May 25, 2019

That's why all of these gaming platforms must start to implement sandboxes, similar to browsers like Chrome and Firefox.

guest · Nov 11, 2020

EA Games' Origin client contained privilege escalation vuln that anyone with user-grade access could exploit
November 10, 2020
https://www.theregister.com/2020/11/10/ea_games_origin_privesc_vuln_nettitude/

A British infosec outfit spotted a privilege escalation vulnerability in EA Games’ Origin client after discovering the software was hunting for an absent DLL file when users opened it.

Nettitude found the priv-esc after researcher Tom Wilson fired up Origin and ran Process Monitor (Procmon) over it to see what Origin was calling when it ran.
As Nettitude's Rob Bone told The Register:

“The crux is Origin itself tries to load a binary from a path that doesn’t exist. It’s most likely that it does exist under dev boxes but was not trimmed from the final polished product.”
Directly affected was Origin’s deployment of the Qt widget toolkit used for creating graphical user interfaces (GUIs) and cross-platform apps capable of running on different hardware and software environments.
Click to expand...

To be exploitable, an attacker would need at least user-level access to the target device.

Procmon revealed that two Origin system-level services were searching for a folder at [code]C:\platforms. This doesn’t exist on a bog standard Windows 10 installation, so Nettitude created it to see what would happen. [...]

“By adding those DLLs to that location we could have those loaded by the process and as that runs, a high integrity process with admin [privileges] on the host, that path is writable by any user,” explained Bone.
Click to expand...

Nettitude Labs: CVE-2020-27708: Electronic Arts (EA) Origin – Local Privilege Escalation

We recently assessed the security posture of Electronic Arts Origin Client and discovered a privilege escalation issue that would allow a low privilege attacker to elevate privileges to NT AUTHORTY\SYSTEM. This has been recorded as CVE-2020-27708.
Click to expand...

Log in or Sign up

Major security flaw found in EA Origin gaming client

guest Guest

guest Guest

Rasheed187 Registered Member

guest Guest

Log in or Sign up

Major security flaw found in EA Origin gaming client

guest Guest

guest Guest

Rasheed187 Registered Member

guest Guest

Useful Searches