11 matches found
CVE-2015-8221
Google Picasa is affected by CVE-2015-8221 due to an integer overflow in the CAMF section of FOVb images, triggering a heap-based buffer overflow that enables arbitrary code execution. Affected products are Google Picasa versions older than 3.9.140.259 (3.9.140.259 Build 259 is cited in sources)....
CVE-2015-8096
CVE-2015-8096 affects Google Picasa 3.9.140.239 and 3.9.140.248, with a heap-based buffer overflow exploitable via Phase One tag 0x412 that enables remote code execution. OpenVAS entries corroborate a buffer overflow condition across Windows and macOS builds; CNVD/NVD entries align on the same ve...
CVE-2013-5357
Google Picasa
CVE-2011-2747
Google Picasa is affected by CVE-2011-2747: on Windows, versions before 3.6 Build 105.67 fail to properly handle invalid properties in JPEG images, allowing remote code execution via a crafted image file. The underlying issue is in how Picasa processes certain JPEG properties, enabling arbitrary ...
CVE-2007-4823
CVE-2007-4823 : Connected documents confirm multiple buffer overflows in Google Picasa. The underlying cause and the affected component are not fully detailed beyond noting buffer overflow conditions, and attack vectors/impact are described as unspecified in the pre-advisory. No concrete remediat...
CVE-2011-0458
CVE-2011-0458 is a local privilege escalation in Google Picasa up to version 3.7 where the vulnerability stems from an untrusted search path in the Locate on Disk feature. An attacker could place a Trojan horse executable in the current working directory to gain privileges when Picasa loads libra...
CVE-2013-5349
Google Picasa (Windows/macOS) versions prior to 3.9.0 Build 137.69 are affected by CVE-2013-5349 due to an integer underflow when parsing Canon RAW CR2 JPEG tags, which can trigger a heap-based buffer overflow and arbitrary code execution. The OpenVAS/Nessus entries confirm multiple related flaws...
CVE-2013-5358
CVE-2013-5358 affects Google Picasa via Picasa3.exe in vulnerable builds prior to 3.9.0 Build 137.69. The issue is memory corruption triggered by parsing crafted TIFF tags in conjunction with a DSLR-A100 model and sequences of tags, potentially enabling remote code execution or other instability....
CVE-2013-5359
Affected software: Google Picasa. The CVE-2013-5359 issue is a stack-based buffer overflow in Picasa3.exe triggered by parsing a specially crafted KDC file (71 bytes), leading to arbitrary code execution. Public details confirm the vulnerability exists in Google Picasa before 3.9.0 Build 137.69, ...
CVE-2007-4824
Technical details about CVE-2007-4824 are not publicly available in the provided documents. No concrete affected products, versions, or exploit information are provided; monitor for updates.
CVE-2007-4847
CVE-2007-4847 concerns Google Picasa allowing remote attackers to read image files stored by Picasa through unspecified vectors involving a picasa:// URI. The description notes this information is based on a vague pre-advisory. According to the NVD entry, the impact is partial confidentiality (re...