Investintech Able2Extract Professional 4.0.7 x64 Out-of-bounds Write Vulnerability


An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write.


The information has been provided by Piotr Bania

The original article can be found at:


Allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by providing the user with a specially crafted JPEG file.


Vulnerable Systems:

Able2Extract Professional 4.0.7 x64


CVE Information:



Disclosure Timeline:
Published Date:11/5/2019