SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Electronic Arts Origin Remote Code Execution 1

Category: WEB-CLIENT      

An issue was discovered in Electronic Arts Origin before 10.5.39. Due to improper sanitization of the origin:// and origin2:// URI schemes, it is possible to inject additional arguments into the Origin process and ultimately leverage code execution by loading a backdoored Qt plugin remotely via the platformpluginpath argument supplied with a Windows network share.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12828


Relevant Information