2 matches found
CVE-2017-16287
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16287
Summary: CVE-2017-16287 affects Insteon Hub firmware 1012 via the PubNub message handler on channel “cc.” The vulnerability stems from unconstrained strcpy calls into stack buffers of limited size during JSON parameter parsing (e.g., dstend). This can cause stack-based buffer overflows, potential...