CVE-2019-5089

Name of the Vulnerable Software and Affected Versions Able2Extract Professional version 4.0.7

Description An exploitable memory corruption issue exists, allowing an attacker to execute arbitrary code on the victim machine by providing a specially crafted JPEG file, which can cause an out-of-bounds memory write.

Recommendations For version 4.0.7, consider avoiding the use of JPEG files from untrusted sources until a patch is available. As a temporary workaround, restrict the ability to open JPEG files in Able2Extract Professional to minimize the risk of exploitation.