CVE-2011-2747

Currently unrated

Key Information:

Vendor: Google
Status: Picasa
Vendor: CVE Published:; 28 July 2011

Summary

Google Picasa before 3.6 Build 105.67 does not properly handle invalid properties in JPEG images, which allows remote attackers to execute arbitrary code via a crafted image file.

References

http://osvdb.org/73980

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/68735

vdb-entryx_refsource_XF

http://secunia.com/advisories/45293

third-party-advisoryx_refsource_SECUNIA

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 28, 2011
Vulnerability Reserved
Jul 14, 2011

Collectors

NVD DatabaseMitre Database