Critical severity9.9NVD Advisory· Published Jan 11, 2023· Updated Jun 17, 2026
CVE-2017-16266
CVE-2017-16266
Description
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability. In cmd s_b, at 0x9d016530, the value for the grp key is copied using strcpy to the buffer at $sp+0x1b4.This buffer is 8 bytes large, sending anything longer will cause a buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2017-0483nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.