CVE-2016-20044
Received Received - Intake
Local Buffer Overflow in PInfo 0.6.9 Allows Code Execution

Publication date: 2026-03-28

Last updated on: 2026-04-10

Assigner: VulnCheck

Description
PInfo 0.6.9-5.1 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized argument to the -m parameter. Attackers can craft a malicious input string with 564 bytes of padding followed by a return address to overwrite the instruction pointer and execute shellcode with user privileges.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-28
Last Modified
2026-04-10
Generated
2026-06-16
AI Q&A
2026-03-28
EPSS Evaluated
2026-06-14
NVD
CVE-2016-20044
EUVD
EUVD-2016-10843
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
surf pinfo to 0.6.9-5.1 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2016-20044 is a local buffer overflow vulnerability in PInfo version 0.6.9-5.1 that occurs when an attacker supplies an oversized argument to the -m parameter.

The vulnerability allows a local attacker to craft a malicious input string with 564 bytes of padding followed by a return address, which overwrites the instruction pointer and enables execution of arbitrary shellcode with user privileges.

This means the attacker can execute code of their choice on the affected system by exploiting this buffer overflow.

Impact Analysis

This vulnerability can allow a local attacker to execute arbitrary code with the same user privileges as the victim.

Successful exploitation can lead to local privilege escalation or unauthorized command execution on the affected system.

Because the attacker can control the instruction pointer and run shellcode, they may gain unauthorized access to sensitive data or disrupt system operations.

Detection Guidance

This vulnerability can be detected by testing the PInfo 0.6.9-5.1 application for buffer overflow behavior when using the -m parameter with an oversized argument.

A practical detection method is to run the vulnerable program with a crafted input string consisting of 564 bytes of padding followed by a specific pattern to observe if a segmentation fault or crash occurs, indicating control over the instruction pointer.

For example, on a Linux system, you can use a command similar to the following to test the vulnerability:

  • python -c 'print("A"*564 + "DCBA")' | xargs -I{} pinfo -m "{}"

If the program crashes with a segmentation fault (SIGSEGV) and debugging shows the pattern "DCBA" in registers, this confirms the buffer overflow vulnerability.

Mitigation Strategies

Immediate mitigation steps include restricting local access to the vulnerable PInfo 0.6.9-5.1 application to trusted users only, as the vulnerability requires local attacker privileges.

Avoid running the pinfo command with the -m parameter on untrusted input or scripts.

If possible, remove or disable the vulnerable version of PInfo until a patched version is available.

Monitor for unusual crashes or behavior of the pinfo application that might indicate exploitation attempts.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2016-20044. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart