Secunia has uncovered a vulnerability in Google's Picasa image management software.

"According to Secunia's advisory, specially crafted JPEG images can be used to provoke an integer overflow in the PicasaPhotoViewer.exe file, which can then be exploited to cause a heap overflow," according to The H Security. "This, in turn, allows attackers to inject arbitrary code and execute it at the user's privilege level."

"According to the Secunia advisory, Google closed the hole in the recently released Picasa 3.6 build 105.41, although Google's release notes say nothing about a fix," the article states.

Click here to read the article at The H Security.