Fancy getting system privs? Swap out a DLL and you're in
A British infosec outfit spotted a privilege escalation vulnerability in EA Games’ Origin client after discovering the software was hunting for an absent DLL file when users opened it. Nettitude found the priv-esc after researcher Tom Wilson fired up Origin and ran Process Monitor (Procmon) over it to see what Origin was calling when it ran. As Nettitude's Rob Bone told The Register: “The crux is Origin itself tries to load a binary from a path that doesn’t exist. It’s most likely that i...