CVE-2016-20050
Buffer Overflow in NetSchedScan 1.0 Causes Application Crash
Publication date: 2026-04-04
Last updated on: 2026-04-14
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mcafee | netschedscan | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2016-20050 is a buffer overflow vulnerability in NetSchedScan version 1.0 and earlier. It occurs in the scan Hostname/IP input field, where supplying an oversized input string causes an out-of-bounds write. Specifically, an attacker with local access can provide a crafted payload of 388 bytes followed by 4 bytes that overwrite the Extended Instruction Pointer (EIP), leading to a crash of the application.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability described is a local buffer overflow in NetSchedScan 1.0 that causes a denial of service by crashing the application. It does not involve unauthorized access to data, data leakage, or compromise of confidentiality or integrity.
Based on the provided information, there is no direct indication that this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA, which primarily focus on protecting personal data confidentiality, integrity, and availability.
However, since the vulnerability causes a denial of service, it could potentially affect availability aspects of systems relying on NetSchedScan, which might indirectly impact compliance if availability is a regulated requirement.
How can this vulnerability impact me? :
This vulnerability can cause a denial of service (DoS) condition by crashing the NetSchedScan application. An attacker with local access can trigger this by supplying a specially crafted input to the Hostname/IP field, causing the application to crash and become unavailable.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by attempting to reproduce the buffer overflow condition locally on the system running NetSchedScan 1.0. A crafted payload consisting of 388 bytes followed by 4 bytes to overwrite the EIP can be used to trigger the denial of service.
One way to test is to create a file containing the payload string (e.g., 388 'A' characters followed by 4 'C' characters) and input it into the scan Hostname/IP field of the application to see if it crashes.
No specific network detection commands are provided, as the vulnerability requires local access and is triggered by local input to the application.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include restricting local access to the NetSchedScan application to trusted users only, since the vulnerability requires local interaction.
Avoid entering oversized input strings into the scan Hostname/IP field to prevent triggering the buffer overflow.
Monitor for application crashes and consider disabling or uninstalling NetSchedScan 1.0 until a patched version is available.