First published: Wed Jan 11 2023(Updated: )
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability. In cmd s_sonos, at 0x9d01e368, the value for the `s_group_vol` key is copied using `strcpy` to the buffer at `$sp+0x2b0`.This buffer is 32 bytes large, sending anything longer will cause a buffer overflow.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Insteon Hub Firmware | =1012 | |
INSTEON Hub | =2245-222 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-16324 is classified as a critical vulnerability due to the potential for remote code execution via buffer overflow.
To mitigate CVE-2017-16324, upgrade the Insteon Hub firmware to a version that is not affected by this vulnerability.
CVE-2017-16324 affects the Insteon Hub running firmware version 1012.
Yes, CVE-2017-16324 can be exploited remotely by sending specially crafted commands through the PubNub service.
CVE-2017-16324 is a buffer overflow vulnerability that affects the PubNub message handler in Insteon Hub.