CVE List

CVE-2019-5089

Critical 7.8

An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write, allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by providing the user with a specially crafted JPEG file.

Published November 6, 2019.

Affected software

Investintech Able2extract

Reference links

Sign Up for Alerts