Google: >> Picasa >> 3.9.140 Security Vulnerabilities
Integer overflow in Google Picasa before 3.9.140 Build 259 allows remote attackers to execute arbitrary code via the CAMF section in a FOVb image, which triggers a heap-based buffer overflow.
CVSS Score
10.0
EPSS Score
0.249
Published
2015-11-17
Integer overflow in Google Picasa 3.9.140 Build 239 and Build 248 allows remote attackers to execute arbitrary code via unspecified vectors related to "phase one 0x412 tag," which triggers a heap-based buffer overflow.
CVSS Score
10.0
EPSS Score
0.103
Published
2015-11-09
Google Picasa allows remote attackers to read image files stored by Picasa via unspecified vectors involving a picasa:// URI. NOTE: this information is based upon a vague pre-advisory.
CVSS Score
5.0
EPSS Score
0.002
Published
2007-09-12
Multiple buffer overflows in Google Picasa have unspecified attack vectors and impact. NOTE: this information is based upon a vague pre-advisory.
CVSS Score
7.5
EPSS Score
0.001
Published
2007-09-11
Multiple cross-application scripting (XAS) vulnerabilities in Google Picasa have unspecified attack vectors and impact. NOTE: this information is based upon a vague pre-advisory.
CVSS Score
6.8
EPSS Score
0.001
Published
2007-09-11