2 matches found
CVE-2017-16301
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16301
CVE-2017-16301 describes multiple stack-based buffer overflow vulnerabilities in the Insteon Hub PubNub PubSub handler on channel “cc” for firmware version 1012. The weaknesses stem from unconstrained strcpy calls that copy user-controlled values (e.g., cmd, usr, pwd, flg) into fixed-size stack b...