2 matches found
CVE-2017-16325
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16325
The CVE targets Insteon Hub with firmware version 1012, specifically the PubNub PubNub PubNub-based “cc” channel message handler. Vulnerability: multiple stack-based buffer overflows caused by unbounded strcpy writes into 32-byte buffers when parsing JSON commands (e.g., s_auth, usr, pwd, etc.). ...