Stack-based Buffer Overflow in Google Picasa Affects User Security
CVE-2013-5359

Currently unrated

Key Information:

Vendor: Google
Status: Picasa
Vendor: CVE Published:; 9 January 2014

Summary

A vulnerability exists in Google Picasa prior to version 3.9.0 Build 137.69, which is caused by a stack-based buffer overflow in the Picasa3.exe process. This issue can be exploited by remote attackers using specially crafted RAW files, such as KDC files, leading to the potential execution of arbitrary code on the user's system. The flaw highlights the necessity for users to update their software to prevent exploitation that could compromise their security and data integrity.

References

http://secunia.com/advisories/55555

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/secunia_research/2013-14/

x_refsource_MISC

http://www.securitytracker.com/id/1029527

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 9, 2014
Vulnerability Reserved
Aug 21, 2013