SB2019121809 - Privilege escalation in EA Origin client

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Incorrect default permissions (CVE-ID: CVE-2019-19248)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect default permissions set for the “C:\ProgramData\Origin\local.xml” file. A local unprivileged user with access to the system can modify the file and execute arbitrary code on the system with elevated privileges.

2) Incorrect default permissions (CVE-ID: CVE-2019-19247)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect default permissions for files and folders that are set by the application. A local user with access to the system can view contents of files and directories or modify them.

Remediation

Install update from vendor's website.

References

• https://www.ea.com/security/news/easec-2019-001-elevation-of-privilege-vulnerability-in-origin-client
• https://enigma0x3.net/2019/12/10/cve-2019-19248-local-privilege-escalation-in-eas-origin-client/