2 matches found
CVE-2017-16328
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16328
CVE-2017-16328 affects Insteon Hub (Firm 1012) via PubNub channel “cc.” The vulnerability is a stack-based buffer overflow caused by unconstrained strcpy() copies of JSON fields (e.g., s_event_offset) into small stack buffers (32 bytes). An authenticated HTTP request parsing the channel’s JSON ca...