EUVD-2017-5818

Malware in sbrugna...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Android

This repository contains a PoC Proof of Concept code for the BlueBorne vulnerabilities. The BlueBorne vulnerabilities are a set of vulnerabilities in the Bluetooth Low Energy BLE protocol that allow an attacker to remotely execute code on a device. The vulnerabilities were discovered in 2017 and...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Android

This repository contains a PoC Proof of Concept code for the BlueBorne vulnerabilities. The BlueBorne vulnerabilities are a set of vulnerabilities in Bluetooth devices that allow an attacker to remotely execute code on a device. The PoC code is written in Python and uses the PyBluez library to...

A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit)

Overview TOYOTA MOTOR's DCU contains a vulnerability which is triggered by BlueBorne vulnerability. TOYOTA MOTER CORPORATION reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact An unauthenticated attacker may cause a denial of service DoS condition or...

Exploit for Out-of-bounds Write in Linux Linux_Kernel

Linux Kernel 4.13.1 - BlueTooth Buffer Overf...

Slackware: Security Advisory (SSA:2017-258-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : bluez (SUSE-SU-2019:0510-1) (BlueBorne)

This update for bluez fixes the following issues : Security issues fixed : CVE-2016-7837: Fixed possible buffer overflow, make sure we don't write past the end of the array.bsc1026652 CVE-2016-9800: Fix hcidump memory leak in pincodereplydump bsc1013721. CVE-2016-9801: Fixed a buffer overflow in...

Bluetooth “BlueBorne” Vulnerabilities - Lenovo Support US

No description provided...

Podcast: Two Billion IoT Devices Still Vulnerable to BlueBorne Bug

Almost a year after the BlueBorne flaws were disclosed in 2017, up to 2 billion IoT devices are still vulnerable to the Bluetooth driver spoofing vulnerability. Joe Lea, VP of product at Armis Security, talks to Threatpost about the challenges that exist in patching IoT devices, and why more and...

Bluetooth “BlueBorne” Vulnerabilities - NL

Lenovo Security Advisory: LEN-17125 Potential Impact: Remote code execution Severity: High Scope of Impact: Industry wide CVE Identifier: CVE-2017-0781, CVE-2017-0782, CVE-2017-0783, CVE-2017-0785, CVE-2017-8628, CVE-2017-14315, CVE-2017-1000250, CVE-2017-1000251 Summary Description: A collection...

SUSE SLED12 / SLES12 Security Update : bluez (SUSE-SU-2018:1778-1) (BlueBorne)

This update for bluez fixes the following issues: Security issues fixed : - CVE-2016-9800: Fix hcidump memory leak in pincodereplydump bsc1013721. - CVE-2016-9804: Fix hcidump buffer overflow in commandsdump bsc1013877. - CVE-2016-7837: Fix possible buffer overflow, make sure we don't write past...

Lenovo Finally Patches Ancient BlueBorne Bugs in Tab and Yoga Tablets

Nine months after researchers warned of the BlueBorne remote code execution bug, Lenovo said Thursday that a patch is finally available for three popular lines of its Android tablets. Lenovo, the world’s No. 3 Android tablet-maker, said BlueBorne patches are now available for four Lenovo Tab...

Android Bluetooth - Blueborne Information Leak (2) Exploit

Exploit for Android platform in category remote exploits from pwn import import bluetooth if not 'TARGET' in args: log.info"Usage: CVE-2017-0785.py TARGET=XX:XX:XX:XX:XX:XX" exit target = args'TARGET' servicelong = 0x0100 serviceshort = 0x0001 mtu = 50 n = 30 def packetservice, continuationstate:...

Android Bluetooth - Blueborne Information Leak (1) Exploit

Exploit for Android platform in category remote exploits from pwn import import bluetooth if not 'TARGET' in args: log.info'Usage: python CVE-2017-0781.py TARGET=XX:XX:XX:XX:XX:XX' exit target = args'TARGET' count = 30 Amount of packets to send port = 0xf BTPSMBNEP context.arch = 'arm'...

LineageOS 14.1 Blueborne - Remote Code Execution Vulnerability

Exploit for Android platform in category remote exploits Exploit Title: LineageOS 14.1 Android 7.1.2 Blueborne RCE CVE-2017-0781 Exploit Author: Marcin Kozlowski Tested on: LinageOS 14.1 Android 7.1.2 without BlueBorne Patch CVE : CVE-2017-0781 Provided for legal security research and testing...

LineageOS 14.1 Blueborne Remote Code Execution

Exploit Title: LineageOS 14.1 Android 7.1.2 Blueborne RCE CVE-2017-0781 Date: 04/01/2018 Exploit Author: Marcin Kozlowski Tested on: LinageOS 14.1 Android 7.1.2 without BlueBorne Patch CVE : CVE-2017-0781 Provided for legal security research and testing purposes ONLY. Code in exp4.py More info in...

LineageOS 14.1 Blueborne - Remote Code Execution

Exploit Title: LineageOS 14.1 Android 7.1.2 Blueborne RCE CVE-2017-0781 Date: 04/01/2018 Exploit Author: Marcin Kozlowski Tested on: LinageOS 14.1 Android 7.1.2 without BlueBorne Patch CVE : CVE-2017-0781 Provided for legal security research and testing purposes ONLY. Code in exp4.py More info in...

LineageOS 14.1 Blueborne - Remote Code Execution

LineageOS 14.1 Blueborne - Remote Code Execution Exploit Title: LineageOS 14.1 Android 7.1.2 Blueborne RCE CVE-2017-0781 Date: 04/01/2018 Exploit Author: Marcin Kozlowski Tested on: LinageOS 14.1 Android 7.1.2 without BlueBorne Patch CVE : CVE-2017-0781 Provided for legal security research and...

roxysploit - Penetration Testing Suite

roxysploit is a community-supported, open-source and penetration testing suite that supports attacks for numerous scenarios. conducting attacks in the field. Some containing Plugins in roxysploit Scan is a automated Information gathering plugin it gives the user the ability to have a rest while t...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0015) (BlueBorne) (Meltdown) (Spectre) (Stack Clash)

The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2018-0015 for details. C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2018-0015...