CVE-2017-16266
CVE-2017-16266 is a set of buffer overflow vulnerabilities in the Insteon Hub PubNub message handler (channel cc) affecting firmware 1012. The root cause is unbounded strcpy writes into small (8-byte or 16–32-byte) buffers when parsing JSON fields (e.g., grp, cmd, usr, pwd) via the PubNub REST pa...