Security researchers from ReVuin recently explained an alleged security flaw in EA’s Origin platform last week at the Black Hat security conference in Amsterdam. ReVuin explained the flaw furtherĀ in a paper entitled ‘EA Origin Insecurity: When Local Bugs Go Remote.. Again’
“The Origin platform allows malicious users to exploit local vulnerabilities or features by abusing the Origin URI handling mechanism,” the paper explains. “In other words, an attacker can craft a malicious Internet link to execute malicious code remotely on a victim’s system, which has Origin installed.”
ReVuin spokespeople also told Arts Technica that the bug requires no interaction from the victim in some cases. An EA spokesperson also told the website “Our team is constantly investigating hypotheticals like this one as we continually update our security infrastructure.”
(via CVG)
Report filed by Thomas Coutts