3 matches found
CVE-2017-16292
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16292
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16292
CVE-2017-16292 covers multiple stack-based buffer overflow vulnerabilities in Insteon Hub’s PubNub CC channel handler. In firmware 1012, several JSON fields parsed via cJSON_GetObjectItem are copied with strcpy into fixed-size buffers (e.g., grp in g_schd, 8 bytes; usr/pwd/other fields in s_auth,...