Thursday, February 25, 2010

Vulnerability In Picasa

There has been found a vulnerability in Google Picasa. The vulnerability is caused due to an integer overflow error in PicasaPhotoViewer.exe when processing JPEG files. This can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted JPEG file and e.g. zooming in. Successful exploitation of the vulnerability may allow an attacker to execute arbitrary code in target system.

The issue affects PicasaPhotoViewer.exe version 3.6.95.25, included in Google Picasa 3.6 build 95.25. Older versions may be affected too. Users of Google Picasa should update their versions to 3.6 build 105.41.

No comments: