CVE-2017-14444

Summary

An exploitable buffer overflow vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly handles the URL parameter during a firmware update request, leading to a buffer overflow on a global section. An attacker can send an HTTP GET request to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
InsteonInsteonInsteon Hub 2245-222 - Firmware version 1012affected

Weaknesses

  • buffer overflow

ADP Enrichment

CVE Program Container

Additional References

References