Lucene search

[email protected]CVE-2006-6897

HistoryJan 08, 2007 - 8:00 p.m.

CVE-2006-6897

2007-01-0820:00:00

[email protected]

web.nvd.nist.gov

cve

2006

6897

directory traversal

widcomm bluetooth

windows

btw

vulnerability

unauthorized file operations

remote attackers

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.4%

JSON

Directory traversal vulnerability in Widcomm Bluetooth for Windows (BTW) 3.0.1.905 allows remote attackers to conduct unauthorized file operations via a … (dot dot) in an unspecified parameter.

Affected configurations

NVD

Node

widcommbluetooth_for_windowsMatch3.0.1.905

CPENameOperatorVersion
widcomm:bluetooth_for_windowswidcomm bluetooth for windowseq3.0.1.905

CPE	Name	Operator	Version
widcomm:bluetooth_for_windows	widcomm bluetooth for windows	eq	3.0.1.905

References

events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf

osvdb.org/37590

www.securityfocus.com/archive/1/455889/100/0/threaded

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.4%

JSON

Related for CVE-2006-6897

cvelist1 nvd1