28 matches found
EUVD-2019-14694
Malware in sbrugna...
CVE-2019-5088
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
CVE-2019-5089
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write, allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by...
CVE-2019-5089
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write, allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by...
CVE-2019-5088
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
CVE-2019-5089
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write, allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by...
CVE-2019-5088
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
Memory corruption
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
CVE-2019-5089
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4.0.7 x64. A specially crafted JPEG file can cause an out-of-bounds memory write, allowing an attacker to execute arbitrary code on the victim machine. An attacker could exploit a vulnerability by...
CVE-2019-5088
CVE-2019-5088: Investintech Able2Extract Professional 14.0.7 x64 contains a vulnerability in BMP decoding that can cause an out-of-bounds memory write, enabling arbitrary code execution. The issue arises from heap-allocated memory being sized using biClrUsed without proper bounds checking during ...
CVE-2019-5088
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
Investintech Able2Extract Professional Memory Corruption Vulnerability
Investintech Able2Extract Professional is a PDF document converter and editor from Investintech Canada. The product supports PDF document scanning, PDF editing and PDF viewing. Investintech Able2Extract Professional suffers from a memory corruption vulnerability that can be exploited by attackers...
Investintech Able2Extract Professional Memory Corruption Vulnerability (CNVD-2019-40117)
Investintech Able2Extract Professional is a PDF document converter and editor from Investintech Canada. The product supports PDF document scanning, PDF editing and PDF viewing. Investintech Able2Extract Professional suffers from a memory corruption vulnerability that can be exploited by attackers...
Vulnerability Spotlight: Two remote code execution vulnerabilities in Investintech Able2Extract
Piotr Bania of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered two remote code execution vulnerabilities in Investintech’s Able2Extract Professional. This software is a cross-platform PDF tool for Windows, Mac and Linux that converts PDFs and allows...
Investintech Able2Extract Professional BMP decoding biClrUsed code execution vulnerability
Summary An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sending t...
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
No description provided by source. Exploit Title: Able2Extract and Able2Extract Server v 6.0 Memory Corruption Date: June 24 2012 Exploit Author: Carlos Mario Penagos Hollmann Vendor Homepage: www.investintech.com Version:6.0 Tested on: Windows 7 CVE : cve-2011-4222 payload =A12000 crash=startxre...
Investintech Able2Extract Detection
The remote host has an install of Investintech Able2Extract, a PDF converter. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62624; scriptversion"1.10"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10"; scriptnameenglish:"Investintech...
Investintech Able2Extract < 7.0.8.22 Multiple Vulnerabilities
The remote host has a version of Investintech Able2Extract that is earlier than 7.0.8.22 and is, therefore, affected by multiple, unspecified vulnerabilities. These vulnerabilities could allow an attacker to cause a denial of service condition or execute arbitrary code on the remote host by...
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
Able2Extract and Able2Extract Server 6.0 - Memory Corruption Exploit Title: Able2Extract and Able2Extract Server v 6.0 Memory Corruption Date: June 24 2012 Exploit Author: Carlos Mario Penagos Hollmann Vendor Homepage: www.investintech.com Version:6.0 Tested on: Windows 7 CVE : cve-2011-4222...
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
Exploit Title: Able2Extract and Able2Extract Server v 6.0 Memory Corruption Date: June 24 2012 Exploit Author: Carlos Mario Penagos Hollmann Vendor Homepage: www.investintech.com Version:6.0 Tested on: Windows 7 CVE : cve-2011-4222 payload ="A"12000 crash="startxref" pdf=payload+crash filename =...