CVE-2016-9150

CRITICAL

Palo Alto Networks PAN-OS <7.1.6 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-9150. PoCs published by Google Security Research.

AI-analyzed exploit summary The writeup describes a buffer overflow vulnerability in Palo Alto Networks' PanOS due to a modified version of the appweb3 embedded webserver's mprItoa function. An unauthenticated attacker can trigger the vulnerability via a crafted request to /unauth/php/errorPage.php, leading to heap corruption and potential remote code execution.

Description

Buffer overflow in the management web interface in Palo Alto Networks PAN-OS before 5.0.20, 5.1.x before 5.1.13, 6.0.x before 6.0.15, 6.1.x before 6.1.15, 7.0.x before 7.0.11, and 7.1.x before 7.1.6 allows remote attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textdoslinux

https://www.exploit-db.com/exploits/40790

View Code ZIP pw:eip

The writeup describes a buffer overflow vulnerability in Palo Alto Networks' PanOS due to a modified version of the appweb3 embedded webserver's mprItoa function. An unauthenticated attacker can trigger the vulnerability via a crafted request to /unauth/php/errorPage.php, leading to heap corruption and potential remote code execution.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Palo Alto Networks PanOS (using appweb3)

No auth needed

Prerequisites: Network access to the target · Palo Alto Networks device with vulnerable PanOS version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1037382

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/40790/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/94399

Various Sources x_refsource_confirm

https://security.paloaltonetworks.com/CVE-2016-9150

Scores

CVSS v3 9.8

EPSS 0.6285

EPSS Percentile 98.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (1)

paloaltonetworks/pan-os 5.0.0 - 5.0.20

Published Nov 19, 2016

Tracked Since Feb 18, 2026