Security Advisory

CVE-2017-16340

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-08-02 19:00:00

Last updated 2024-08-05 20:20:05

Assigner talos

State PUBLISHED

Description

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012. At 0x9d01c0e8 the value for the s_dport key is copied using strcpy to the buffer at 0xa000180c. This buffer is 6 bytes large, sending anything longer will cause a buffer overflow.

← Browse all CVEs View on cve.org ↗