2 matches found
CVE-2017-16330
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker...
CVE-2017-16330
CVE-2017-16330 affects Insteon Hub (firmware 1012) through the PubNub PubNub message handler on channel cc. The vulnerability is a set of stack-based buffer overflows caused by unbounded strcpy calls when parsing JSON fields (e.g., s_event_group, usr, pwd, etc.). An attacker can trigger the overf...