CVE-2017-16254 — HIGH (8.1)

Vulnerability Description

An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP request at 0x9d014e4c the value for the flg key is copied using strcpy to the buffer at $sp+0x270. This buffer is 16 bytes large, sending anything longer will cause a buffer overflow.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Insteon	Hub Firmware	1012
Insteon	Hub	2245-222

Related Weaknesses (CWE)

CWE-787

References

https://talosintelligence.com/vulnerability_reports/TALOS-2017-0483ExploitThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2017-0483ExploitThird Party Advisory

FAQ

What is CVE-2017-16254?

CVE-2017-16254 is a vulnerability with a CVSS score of 8.1 (HIGH). An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a s...

How severe is CVE-2017-16254?

CVE-2017-16254 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-16254?

Check the references section above for vendor advisories and patch information. Affected products include: Insteon Hub Firmware, Insteon Hub.