Vulnerabilities > Google > Picasa > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-11-17 | CVE-2015-8221 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Picasa Integer overflow in Google Picasa before 3.9.140 Build 259 allows remote attackers to execute arbitrary code via the CAMF section in a FOVb image, which triggers a heap-based buffer overflow. | 10.0 |
2015-11-09 | CVE-2015-8096 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Picasa 3.9.140 Integer overflow in Google Picasa 3.9.140 Build 239 and Build 248 allows remote attackers to execute arbitrary code via unspecified vectors related to "phase one 0x412 tag," which triggers a heap-based buffer overflow. | 10.0 |
2011-07-28 | CVE-2011-2747 | Code Injection vulnerability in Google Picasa Google Picasa before 3.6 Build 105.67 does not properly handle invalid properties in JPEG images, which allows remote attackers to execute arbitrary code via a crafted image file. | 9.3 |