SecuritySpace - CVE-2013-5349

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2013-5349

Description: Integer underflow in Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 allows remote attackers to execute arbitrary code via a crafted JPEG tag that triggers a heap-based buffer overflow, as demonstrated using a Canon RAW CR2 file with a large JPEG tag value and a small size.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-5349
http://secunia.com/secunia_research/2013-14/
http://www.securitytracker.com/id/1029527
http://secunia.com/advisories/55555

CVE ID:	CVE-2013-5349
Description:	Integer underflow in Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 allows remote attackers to execute arbitrary code via a crafted JPEG tag that triggers a heap-based buffer overflow, as demonstrated using a Canon RAW CR2 file with a large JPEG tag value and a small size.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2013-5349 http://secunia.com/secunia_research/2013-14/ http://www.securitytracker.com/id/1029527 http://secunia.com/advisories/55555