CVE-2016-20044 HIGH

CVE-2016-20044: PInfo 0.6.9-5.1 Local Buffer Overflow via -m Parameter

Vendor Pinfo

Product PInfo

Weakness CWE-787

Published March 28, 2026

Last update March 30, 2026

View on NVD All CVEs

CVSS base score

8.6/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

PInfo 0.6.9-5.1 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized argument to the -m parameter. Attackers can craft a malicious input string with 564 bytes of padding followed by a return address to overwrite the instruction pointer and execute shellcode with user privileges.

Key dates

02Disclosure timeline

March 28, 2026 CVE published

March 30, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2016-20044 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/787.html

Related vulnerabilities

CVE-2016-20044: PInfo 0.6.9-5.1 Local Buffer Overflow via -m Parameter

01Description

02Disclosure timeline

03References

04Related CVE