Google Picasa < 3.6 Build 105.41
High Nessus Plugin ID 45049
SynopsisA photo organizer application on the remote Windows host has an integer overflow vulnerability.
DescriptionThe version of Google Picasa running on the remote host reportedly has an integer overflow vulnerability when processing specially crafted JPEG files. This can lead to a heap overflow.
A remote attacker could exploit this by tricking a user into opening a maliciously crafted JPEG file, resulting in arbitrary code execution.
SolutionUpgrade to Picasa 3.6 Build 105.41 or later.