2 matches found
CVE-2017-16267
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16267
Summary: CVE-2017-16267 affects Insteon Hub (firmware 1012). The issue is a set of stack-based buffer overflows in the PubNub message handler for the channel “cc,” caused by unbounded strcpy writes from JSON fields (e.g., cmd, usr, pwd, val) into small buffers. An attacker can trigger the overflo...