CVE-2017-14444

2018-08-02T19:29:00
ID CVE-2017-14444
Type cve
Reporter cve@mitre.org
Modified 2018-09-27T18:54:00

Description

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the URL parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an HTTP GET request to trigger this vulnerability.