CVE-2012-2176
IBM Lotus Quickr - Memory Corruption
Title source: ruleDescription
Multiple stack-based buffer overflows in a certain ActiveX control in qp2.cab in IBM Lotus Quickr 8.2 before 8.2.0.27-002a for Domino allow remote attackers to execute arbitrary code via a long argument to the (1) Attachment_Times or (2) Import_Times method.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/23737
metasploit
WORKING POC
NORMAL
by Gaurav Baruah, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/quickr_qp2_bof.rb
References (4)
Scores
EPSS
0.6192
EPSS Percentile
98.4%
Details
CWE
CWE-119
Status
published
Products (1)
ibm/lotus_quickr
8.2
Published
May 25, 2012
Tracked Since
Feb 18, 2026