2 matches found
CVE-2017-16314
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16314
Insteon Hub CVE-2017-16314 affects the PubNub-based message handler for channel cc on firmware 1012. The issue is a stack-based buffer overflow caused by unconstrained strcpy usage when handling various JSON fields (notably s_speaker and s_auth-related keys). The overflow occurs in 32-byte buffer...