[原文]RealNetworks GameHouse RealArcade Installer (aka ActiveMARK Game Installer) 188.8.131.521 and 3.0.7 uses weak permissions (Create Files/Write Data) for the GameHouse Games directory tree, which allows local users to gain privileges via a Trojan horse DLL in an individual game's directory, as demonstrated by DDRAW.DLL in the Zuma Deluxe directory.
GameHouse RealArcade Installer contains a flaw, as it by default installs games into '%HOMEDRIVE%\GameHouse Games\' with 'Create Files / Write Data' permissions, allowing unprivileged users to create arbitrary files within the game installation directories. This allows a local attacker to place e.g. a malicious DLL file within a game installation directory, causing it to be loaded when the game is launched and allows gaining privileges similar to any user running the game.
During installation, do not select the default suggested game installation path, but instead one within the %ProgramFiles% path.