2 matches found
CVE-2017-16300
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16300
Insteon Hub, firmware 1012, contains multiple stack-based buffer overflow vulnerabilities in the PubNub message handler for the cc channel. The flaw stems from unbounded strcpy writes when parsing JSON fields (e.g., id, usr, pwd, cmd), allowing overflow of 32-byte buffers on the stack and potenti...