2 matches found
CVE-2017-16290
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16290
CVE-2017-16290 affects Insteon Hub firmware 1012, specifically the PubNub message handler for the cc channel. The root cause is stack-based buffer overflows caused by unrestricted strcpy calls when processing JSON commands (e.g., s_sun with sunrise) that copy user-supplied values into fixed-size ...