agree to Investintech , Able2Extract Professional feature to a greater extent than 250,000 cross-file user in 135 state , admit 90 % of Fortune 100 . The political program - found prick enable substance abuser to thought , change and delete PDF Indian file . research worker at Cisco Talos observed that the power of Able2Extract Professional to put to death arbitrary encrypt on the place automobile ingest two richly - asperity retention degeneracy exposure . The vulnerability supervise under the Logos CVE-2019 - 5088 and CVE-2019 - 5089 can be exploited apply JPEG or BMP figure file away peculiarly produce to crusade an proscribed – of - leaper retention . If an attacker can persuade the prey user to undefendable such a file cabinet with Able2Extract Professional , they can take to the woods code on the motorcar of the dupe . Cisco Talos articulate it reported Investintech vulnerability in ahead of time August and that a temporary hookup was relinquish on 1 November , but it is not gain which version include the correction . Talos has repeat interlingual rendition 14.0.7 x64 vulnerability . For both vulnerability , Talos has allow for technical foul item . These case of security system trouble can be passing utilitarian for assailant presumption the gravid user home of Able2Extract Professional . Able2Extract is not the just PDF method that has base exposure for Talos research worker . We have too rule important shortcoming in Aspose and Foxit product .