CVE-2015-8221

Currently unrated

Key Information:

Vendor: Google
Status: Picasa
Vendor: CVE Published:; 17 November 2015

Summary

Integer overflow in Google Picasa before 3.9.140 Build 259 allows remote attackers to execute arbitrary code via the CAMF section in a FOVb image, which triggers a heap-based buffer overflow.

References

http://secunia.com/secunia_research/2015-5/

x_refsource_MISC

http://www.securityfocus.com/archive/1/536878/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://packetstormsecurity.com/files/134315/Google-Picasa...

x_refsource_MISC

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 17, 2015
Vulnerability Reserved
Nov 17, 2015

Collectors

NVD DatabaseMitre Database