2 matches found
CVE-2017-16283
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16283
Multi-source documents confirm CVE-2017-16283 affects Insteon Hub (firmware 1012) via PubNub message handler on channel “cc”. The core vulnerability is stack-based buffer overflow caused by unconstrained strcpy calls when parsing JSON fields (e.g., name, usr, pwd) in the s_name and s_auth command...