CVE-2024-57276

CVE-2024-57276 is an unquoted service path vulnerability affecting the DAUpdaterSVC service in Electronic Arts' Dragon Age: Origins version 1.05. The service is configured with insecure permissions that allow users to modify the executable file path it uses. Running with NT AUTHORITY\SYSTEM privileges, the flaw enables privilege escalation when attackers replace or place a malicious executable in the service path. The vulnerability is rated 7.3 on the CVSS v3.1 scale (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L) and maps to CWE-428 (Unquoted Search Path or Element).

Local attackers with low privileges can exploit this vulnerability due to its low attack complexity and lack of user interaction requirements. By modifying the service's executable path to point to a malicious binary, they can achieve privilege escalation to SYSTEM level, potentially gaining high confidentiality and integrity impacts along with low availability impact. This allows full control over the affected system.

Details on the vulnerability, including reproduction steps, are available in researcher advisories at the provided references: https://github.com/yamerooo123/CVE/blob/main/CVE-2024-57276/Description.md and https://github.com/yamerooo123/ResearchNBugBountyEncyclopedia/blob/main/Researches/Dragon%20Age%20Origins/Description.md. No official patches or mitigations from Electronic Arts are detailed in the available information.