Plays.tv Remote Code Execution (CVE-2018-6546)

A remote code execution vulnerability exists in Plays.tv. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

AMD Plays.tv 1.27.5.0 - plays_service.exe Arbitrary File Execution Exploit

Exploit for windows platform in category local exploits http://support.amd.com/en-us/download?cmpid=CCCOffline - Click "Automatically Detect - Download Now" Installation Automatically Installs "Raptr, Inc Plays TV Service" OR https://plays.tv/download Target OS: Windows Any Privilege: SYSTEM Type...

AMD Plays.tv 1.27.5.0 - plays_service.exe Arbitrary File Execution

AMD Plays.tv 1.27.5.0 - playsservice.exe Arbitrary File Execution http://support.amd.com/en-us/download?cmpid=CCCOffline - Click "Automatically Detect - Download Now" Installation Automatically Installs "Raptr, Inc Plays TV Service" OR https://plays.tv/download Target OS: Windows Any Privilege:...

AMD Plays.tv 1.27.5.0 Arbitrary File Execution

http://support.amd.com/en-us/download?cmpid=CCCOffline - Click "Automatically Detect - Download Now" Installation Automatically Installs "Raptr, Inc Plays TV Service" OR https://plays.tv/download Target OS: Windows Any Privilege: SYSTEM Type: Arbitrary File Execution Notes: Second minor bug allow...

CVE-2018-6547

The CVE-2018-6547 entry concerns AMD driver-installation packages and the plays.tv service (plays_service.exe) prior to version 1.27.7.0. Affected component is an HTTP message parsing function that accepts a user-defined path and writes non-user-controlled data as SYSTEM to a file when the extrac...

CVE-2018-6546

CVE-2018-6546 affects the AMD driver-installation package plays.tv service (plays_service.exe) prior to version 1.27.7.0. The flaw allows code execution with SYSTEM privileges when the execute_installer parameter is used in an HTTP message, due to improper user authentication. A remote attacker c...