[Blog] Local Privilege Escalation in EA's Origin Clienthttps://enigma0x3.net/2019/12/10/cve-2019-19248-local-privilege-escalation-in-eas-origin-client/ …
Yeah, I guess I shouldn't equate System integrity with System privileges. The original blog stated "restarting the “Origin Web Helper Service” service will cause it to try and set the DACL" But it's the Origin Client Service (runs as LocalSystem) that actually does the DACL stomppic.twitter.com/yLo9cHq6NK
-
-
My original interest in this was because my python script to detect potentially-exploitable services https://gist.github.com/wdormann/db533d84df57a70e9580a6a2127e33bb … didn't detect Origin Web Helper Service as privileged. And I think that's correct. Network/Local Service privs != System privs. Token perhaps a red herringpic.twitter.com/Y5rW5OKyHz
-
Yeah, it gets a little weird because the Web Helper Service starts the client service when it starts, which does all the dumb crap
End of conversation
New conversation -
-
-
Yeah, that should be fixed (the code snippet is even from the client service
)Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.