Heap-based Buffer Overflow in Google Picasa Allows Remote Code Execution

Heap-based Buffer Overflow in Google Picasa Allows Remote Code Execution

CVE-2015-8221 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Integer overflow in Google Picasa before 3.9.140 Build 259 allows remote attackers to execute arbitrary code via the CAMF section in a FOVb image, which triggers a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.