3 matches found
CVE-2017-16255
An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP...
CVE-2017-16255
An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP...
CVE-2017-16255
Summary: CVE-2017-16255 affects Insteon Hub 2245-222 (firmware 1012). The PubNub message handler contains multiple stack-based buffer overflow weaknesses caused by unbounded strcpy usage when parsing JSON fields (notably cmd, usr, pwd, cmd1, etc.). An authenticated HTTP request can trigger these ...