VYPR
High severity8.4NVD Advisory· Published Mar 28, 2026· Updated Apr 10, 2026

CVE-2016-20044

CVE-2016-20044

Description

PInfo 0.6.9-5.1 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized argument to the -m parameter. Attackers can craft a malicious input string with 564 bytes of padding followed by a return address to overwrite the instruction pointer and execute shellcode with user privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Surf/Pinfo2 versions
    cpe:2.3:a:surf:pinfo:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:surf:pinfo:*:*:*:*:*:*:*:*range: <=0.6.9-5.1
    • (no CPE)range: =0.6.9-5.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.