2 matches found
CVE-2017-16256
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16256
CVE-2017-16256 affects Insteon Hub firmware 1012 (PubNub channel cc). The vulnerability is a stack-based buffer overflow caused by unconstrained strcpy calls when parsing PubNub JSON commands (e.g., cmd2, usr, pwd, etc.) in the Insteon Hub PubNub message handler. An attacker must send an authenti...