Vulnerabilities > CVE-2015-8221 - Numeric Errors vulnerability in Google Picasa

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

google

CWE-189

NVD

Published: 2015-11-17

Updated: 2024-11-21

Summary

Integer overflow in Google Picasa before 3.9.140 Build 259 allows remote attackers to execute arbitrary code via the CAMF section in a FOVb image, which triggers a heap-based buffer overflow.

Vulnerable Configurations

Part	Description	Count
Application	Google Google Picasa - Google Picasa 3.6 Google Picasa 3.8 Google Picasa 3.9.0 Google Picasa 3.9.140	5

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://packetstormsecurity.com/files/134315/Google-Picasa-CAMF-Section-Integer-Overflow.html
http://packetstormsecurity.com/files/134315/Google-Picasa-CAMF-Section-Integer-Overflow.html
http://secunia.com/secunia_research/2015-5/
http://secunia.com/secunia_research/2015-5/
http://www.securityfocus.com/archive/1/536878/100/0/threaded
http://www.securityfocus.com/archive/1/536878/100/0/threaded