USN-1160-1: Linux kernel vulnerabilities

Dan Rosenberg discovered that IRDA did not correctly check the size of buffers. On non-x86 systems, a local attacker could exploit this to read kernel heap memory, leading to a loss of privacy. CVE-2010-4529 Dan Rosenburg discovered that the CAN subsystem leaked kernel addresses into the /proc...

Linux kernel multiple DoS conditions

epoll DoS conditions, tkill privilege escalation, buffer overflows in bluetooth stack...

HTC handheld PCs directory traversal

Bluetoth stack OBEX FTP directory traversal...

CVE-2009-0244

Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read...

Directory traversal

Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read...

CVE-2009-0244

Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read...

CVE-2009-0244

Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read...

Microsoft Bluetooth Directory Traversal

Title: Microsoft Bluetooth Stack OBEX Directory Traversal Author: Alberto Moreno Tablado Vendor: Microsoft Vulnerable Products: Windows Mobile 6 Professional Probably Windows Mobile 5.0 for Pocket PC Probably Windows Mobile 6 Classic Probably Windows Mobile 5.0 for Pocket PC Phone Edition Probabl...

Microsoft Windows Mobile bluetooth stack directory traversal

OBEX FTP directory traversal...

Microsoft Bluetooth Stack OBEX Directory Traversal

Title: Microsoft Bluetooth Stack OBEX Directory Traversal Author: Alberto Moreno Tablado Vendor: Microsoft Product: Windows Mobile 6 Professional Probably Windows Mobile 5.0 for Pocket PC and Windows Mobile 5.0 for Pocket PC Phone Edition References:...

Nokia N70/N73 Bluetooth Stack Denial Of Service

Nokia N70/N73 Bluetooth Stack OBEX Implementation Denial of Service ------------------------------------------------------------------ I. Summary Nokia N70 and N73 are two popular models from Nokia's N-series lineup of smart phones. A flaw has been found in the OBEX implementation in these two...

Bluetooth Stack Could Allow Remote Code Execution Vulnerability (951376)

This host is missing a critical security update according to Microsoft Bulletin MS08-030. OpenVAS Vulnerability Test $Id: gbms08-030.nasl 5863 2017-04-05 07:38:11Z antu123 $ Bluetooth Stack Could Allow Remote Code Execution Vulnerability 951376 Authors: Chandan S Copyright: Copyright c 2008...

Bluetooth Stack Could Allow Remote Code Execution Vulnerability (951376)

This host is missing a critical security update according to Microsoft Bulletin MS08-030. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

bluez bluetooth stack memory corruption

Memory corruption on SDP packet parsing...

Code injection

The Bluetooth stack in Microsoft Windows XP SP2 and SP3, and Vista Gold and SP1, allows physically proximate attackers to execute arbitrary code via a large series of Service Discovery Protocol SDP packets...

MS08-030: Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376)

The remote host contains a version of the Windows Bluetooth stack that is affected by a security flaw in the service description request handle which could allow a remote attacker to execute code with SYSTEM privileges. C Tenable Network Security, Inc. include"compat.inc"; if description...

Microsoft Windows Bluetooth Stack Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability because its implementation of the Bluetooth stack fails to adequately handle a flood of specially crafted SDP Service Discovery Protocol requests. To exploit this issue, an attacker must be within close physical...

Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit

Exploit for linux platform in category local exploits ========================================================== Linux Kernel Not tainted VLI EFLAGS: 00010286 2.6.9 EIP is at btsockcreate+0x3d/0x130 eax: ffffffff ebx: ffebfe34 ecx: 00000000 edx: c051bea0 esi: ffffffa3 edi: ffffff9f ebp: 00000001...

Linux Kernel 2.6.11.5 - BlueTooth Stack Privilege Escalation

Linux Kernel 2.6.11.5 - BlueTooth Stack Privilege Escalation / LINUX KERNEL Not tainted VLI EFLAGS: 00010286 2.6.9 EIP is at btsockcreate+0x3d/0x130 eax: ffffffff ebx: ffebfe34 ecx: 00000000 edx: c051bea0 esi: ffffffa3 edi: ffffff9f ebp: 00000001 esp: c6729f1c ds: 007b es: 007b ss: 0068 Process...

CVE-2006-6896

The vulnerability CVE-2006-6896 affects the Bluetooth stack in the Plantronics Headset, caused by improper implementation of Non-pairable mode. This allows remote attackers within range to perform unauthorized pairing operations. The provided documents do not specify any remediation, patch versio...