CVE-2012-0201
IBM Personal Communications - Memory Corruption
Title source: ruleDescription
Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM Personal Communications 5.9.x before 5.9.8 and 6.0.x before 6.0.4 might allow remote attackers to execute arbitrary code via a long profile string in a WorkStation (aka .ws) file.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/18539
metasploit
WORKING POC
GREAT
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ibm_pcm_ws.rb
References (7)
Scores
EPSS
0.7507
EPSS Percentile
98.9%
Details
CWE
CWE-119
Status
published
Products (3)
ibm/personal_communications
5.9.7.0
ibm/personal_communications
5.9.7.1
ibm/personal_communications
6.0.3.0
Published
Mar 02, 2012
Tracked Since
Feb 18, 2026