Lucene search

[email protected]NVD:CVE-2006-6899

HistoryDec 31, 2006 - 5:00 a.m.

CVE-2006-6899

2006-12-3105:00:00

CWE-16

[email protected]

web.nvd.nist.gov

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.308

Percentile

97.0%

JSON

hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.

Affected configurations

Nvd

Node

bluez_projectbluezRange≤2.24

VendorProductVersionCPE
bluez_projectbluez*cpe:2.3:o:bluez_project:bluez:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bluez_project	bluez	*	cpe:2.3:o:bluez_project:bluez::::::::

References

events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf

mulliner.org/bluetooth/hidattack.php

osvdb.org/32830

secunia.com/advisories/23747

secunia.com/advisories/23798

secunia.com/advisories/23879

secunia.com/advisories/25264

www.mandriva.com/security/advisories?name=MDKSA-2007:014

www.redhat.com/support/errata/RHSA-2007-0065.html

www.securityfocus.com/archive/1/455889/100/0/threaded

www.securityfocus.com/bid/22076

www.ubuntu.com/usn/usn-413-1

www.vupen.com/english/advisories/2007/0200

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10208

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.308

Percentile

97.0%

JSON

Related for NVD:CVE-2006-6899

openvas4 exploitdb1 nessus6 ubuntu1 redhat1 seebug1 ubuntucve1 oraclelinux1 cvelist1 centos1 cve1