2 matches found
CVE-2017-14445
An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the host parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an HTTP GET request to...
CVE-2017-14445
This CVE affects Insteon Hub firmware 1012. The HTTP server mishandles the host parameter during a firmware-update request, performing unsafe copies into a global buffer and enabling a buffer overflow via a crafted GET request. The exploit path requires at least three GET parameters, with the thi...