KLA10180
Multiple vulnerabilities in Google Picasa
Updated: 06/17/2019
Detect date
?
01/08/2014
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Google Picasa. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities

  1. A buffer overflow can be exploited remotely via a specially designed RAW file;
  2. Unknown vectors can be exploited via a specially designed TIFF file;
  3. An integer overflow can be exploited remotely via specially designed TIFF & JPEG files;
Affected products

Google Picasa versions 3.9.0 Build 137.68 and earlier

Solution

Update to latest version
Google Picasa

Impacts
?
ACE 
[?]

DoS 
[?]
CVE-IDS
?
CVE-2013-53587.5Critical
CVE-2013-53597.5Critical
CVE-2013-53577.5Critical
CVE-2013-53497.5Critical