Secunia reports a hole in Google’s Picasa image management and editing software that allows attackers to compromise Windows using specially crafted JPEG images to provoke an integer overflow in the PicasaPhotoViewer.exe file, which can then be exploited to cause a heap overflow. Google closed the hole in the recently released Picasa 3.6 build
105.41, although Google’s release notes say nothing about a fix. Read the full article. [The H Security]
Google Picasa Heap Overflow Hole Closed
Author:
Donald Sears
minute read
Share this article:
Secunia reports a hole in Google’s Picasa image management and editing software that allows attackers to compromise Windows using specially crafted JPEG images to provoke an integer overflow in the PicasaPhotoViewer.exe file, which can then be exploited to cause a heap overflow. Google closed the hole in the recently released Picasa 3.6 build
105.41, although Google’s release notes say nothing about a fix. Read the full article. [The H Security]