CVE-2016-20050
Received Received - Intake
Buffer Overflow in NetSchedScan 1.0 Causes Application Crash

Publication date: 2026-04-04

Last updated on: 2026-04-14

Assigner: VulnCheck

Description
NetSchedScan 1.0 contains a buffer overflow vulnerability in the scan Hostname/IP field that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a crafted payload containing 388 bytes of data followed by 4 bytes of EIP overwrite into the Hostname/IP field to trigger a denial of service condition.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-04
Last Modified
2026-04-14
Generated
2026-06-16
AI Q&A
2026-04-04
EPSS Evaluated
2026-06-15
NVD
CVE-2016-20050
EUVD
EUVD-2016-10856
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
mcafee netschedscan 1.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2016-20050 is a buffer overflow vulnerability in NetSchedScan version 1.0 and earlier. It occurs in the scan Hostname/IP input field, where supplying an oversized input string causes an out-of-bounds write. Specifically, an attacker with local access can provide a crafted payload of 388 bytes followed by 4 bytes that overwrite the Extended Instruction Pointer (EIP), leading to a crash of the application.

Impact Analysis

This vulnerability can cause a denial of service (DoS) condition by crashing the NetSchedScan application. An attacker with local access can trigger this by supplying a specially crafted input to the Hostname/IP field, causing the application to crash and become unavailable.

Detection Guidance

This vulnerability can be detected by attempting to reproduce the buffer overflow condition locally on the system running NetSchedScan 1.0. A crafted payload consisting of 388 bytes followed by 4 bytes to overwrite the EIP can be used to trigger the denial of service.

One way to test is to create a file containing the payload string (e.g., 388 'A' characters followed by 4 'C' characters) and input it into the scan Hostname/IP field of the application to see if it crashes.

No specific network detection commands are provided, as the vulnerability requires local access and is triggered by local input to the application.

Mitigation Strategies

Immediate mitigation steps include restricting local access to the NetSchedScan application to trusted users only, since the vulnerability requires local interaction.

Avoid entering oversized input strings into the scan Hostname/IP field to prevent triggering the buffer overflow.

Monitor for application crashes and consider disabling or uninstalling NetSchedScan 1.0 until a patched version is available.

Compliance Impact

The vulnerability described is a local buffer overflow in NetSchedScan 1.0 that causes a denial of service by crashing the application. It does not involve unauthorized access to data, data leakage, or compromise of confidentiality or integrity.

Based on the provided information, there is no direct indication that this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA, which primarily focus on protecting personal data confidentiality, integrity, and availability.

However, since the vulnerability causes a denial of service, it could potentially affect availability aspects of systems relying on NetSchedScan, which might indirectly impact compliance if availability is a regulated requirement.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2016-20050. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart