Lucene search

[email protected]CVE-2006-6899

HistoryJan 08, 2007 - 8:00 p.m.

CVE-2006-6899

2007-01-0820:00:00

CWE-16

[email protected]

web.nvd.nist.gov

cve-2006-6899

bluez

bluez-utils

hid

hidattack

nvd

security vulnerability

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.224 Low

EPSS

Percentile

96.5%

JSON

hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.

Affected configurations

NVD

Node

bluez_projectbluezRange≤2.24

CPENameOperatorVersion
bluez_project:bluezbluez project bluezle2.24

CPE	Name	Operator	Version
bluez_project:bluez	bluez project bluez	le	2.24

References

events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf

mulliner.org/bluetooth/hidattack.php

osvdb.org/32830

secunia.com/advisories/23747

secunia.com/advisories/23798

secunia.com/advisories/23879

secunia.com/advisories/25264

www.mandriva.com/security/advisories?name=MDKSA-2007:014

www.redhat.com/support/errata/RHSA-2007-0065.html

www.securityfocus.com/archive/1/455889/100/0/threaded

www.securityfocus.com/bid/22076

www.ubuntu.com/usn/usn-413-1

www.vupen.com/english/advisories/2007/0200

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10208

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.224 Low

EPSS

Percentile

96.5%

JSON

Related for CVE-2006-6899

openvas4 redhat1 nessus6 nvd1 ubuntucve1 seebug1 ubuntu1 centos1 oraclelinux1 cvelist1