CVE-2015-8096

Currently unrated

Key Information:

Vendor: Google
Status: Picasa
Vendor: CVE Published:; 9 November 2015

Summary

Integer overflow in Google Picasa 3.9.140 Build 239 and Build 248 allows remote attackers to execute arbitrary code via unspecified vectors related to "phase one 0x412 tag," which triggers a heap-based buffer overflow.

References

http://secunia.com/secunia_research/2015-3/

x_refsource_MISC

http://www.securityfocus.com/archive/1/536761/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://packetstormsecurity.com/files/134084/Google-Picasa...

x_refsource_MISC

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 9, 2015
Vulnerability Reserved
Nov 9, 2015

Collectors

NVD DatabaseMitre Database