1340 matches found
Android Bluetooth Elevation of Privilege Vulnerability
Android is a cell phone operating system based on the Linux open kernel. The Bluetooth feature in Android version 6.0 prior to 2016-01-01 has a security vulnerability in its implementation. A remote attacker can gain access to sensitive information through pairing...
CVE-2015-6641
Bluetooth in Android 6.0 before 2016-01-01 allows remote attackers to obtain sensitive Contacts information by leveraging pairing, aka internal bug 23607427...
CVE-2015-6641
Bluetooth in Android 6.0 before 2016-01-01 allows remote attackers to obtain sensitive Contacts information by leveraging pairing, aka internal bug 23607427...
How To Use WhatsApp Web Client on iPhone and Other iOS Devices
WhatsApp Web client support is now available for iOS users. That's right, now iOS users can access their instant messaging facility on the web; without taking the other route via jailbreaking. Eight months ago, on January 21, 2015, WhatsApp was made available on web browsers, and let Android,...
Google Android Bluetooth Forced Pairing Remote Code Execution Vulnerability
Android is an operating system based on the Linux open kernel and is a mobile operating system announced on November 5, 2007 by Google Inc. Google Android suffers from a remote code execution vulnerability. An attacker can exploit the vulnerability to execute arbitrary code in the context of a...
(Mobile Pwn2Own) Google Android Bluetooth Forced Pairing Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Android. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Bluetooth application stack allowing for arbitrary Host Controller Interface comman...
Design/Logic Flaw
The web interface in BitTorrent allows remote attackers to execute arbitrary commands by leveraging knowledge of the pairing values and a crafted request to port 10000...
Apple TV security vulnerabilities
Unauthorized bluetooth pairing, SSL poodle attack...
CVE-2014-4428
Bluetooth in Apple OS X before 10.10 does not require encryption for HID Low Energy devices, which allows remote attackers to spoof a device by leveraging previous pairing...
CVE-2014-4428
Bluetooth in Apple OS X before 10.10 does not require encryption for HID Low Energy devices, which allows remote attackers to spoof a device by leveraging previous pairing...
APPLE-SA-2014-10-16-1 OS X Yosemite v10.10
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-10-16-1 OS X Yosemite v10.10 OS X Yosemite v10.10 is now available and addresses the following: 802.1X Impact: An attacker can obtain WiFi credentials Description: An attacker could have impersonated a WiFi access point, offered to...
Android Bluetooth Pairing Packet Processing Vulnerability(by wangzq from NCNIPC)
I. Summary Bluetooth Pairing Packet is written to a NFC tag, which can be touched by a NFC mobile phone for bluetooth pairing. A logic flaw has been found in some versions of Andorid mobile phone. The flaw can cause NFC phones'bluetooth turned on, regardless of whether the pairing succeeds or not...
Android NFC Service Denial of Service
Android NFC Service Denial of Service ------------------------------------------------------------------ I. Summary NFC Service is a process of Android OS for providing access to NFC functionality, allowing applications to read NDEF message in NFC tags. A flaw has beend found in NFC Service...
[BTCrack v1.1] The worlds first Bluetooth Pass phrase (PIN) Bruteforce Tool
BTCrack is the worlds first Bluetooth Pass phrase PIN bruteforce tool, BTCrack will bruteforce the Passkey and the Link key from captured pairing exchanges. BTcrack was demoed and realeased at Hack.lu 2007 and 23C3 in Berlin, the video of the presentation is available on Google Video . To capture...
Fujitsu cracks 278-digit crypto in 148 Days using 21 PCs
Fujitsu cracks 278-digit crypto in 148 Days using 21 PCs A team of researchers in Japan have successfully broken a 278-digit piece of crypto in less than 200 days. Fujitsu Laboratories Limited, National Institute of Information and Communications Technology NICT and Kyushu University jointly brok...
Race condition
Race condition in Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch allows physically proximate attackers to bypass intended passcode requirements, and pair a locked device with a computer and access arbitrary data, via vectors involving the initial boot...
CVE-2010-1775
Race condition in Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch allows physically proximate attackers to bypass intended passcode requirements, and pair a locked device with a computer and access arbitrary data, via vectors involving the initial boot...
PT-2010-3412 · Apple · Ios
Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4 Description: A race condition exists in the Passcode Lock feature, allowing physically proximate attackers to bypass passcode requirements. This can be exploited to pair a locked device with a computer, resulting...
For the Bluetooth PIN code of the latest attack techniques details of the analysis-vulnerability warning-the black bar safety net
Note: This Chapter is just to explain the determination for the Bluetooth PIN code of the latest attack techniques, in order to draw attention to prevention, and no other purpose. No person shall use in this article the description of the technology to do illegal things. Recently, many domestic a...
Design/Logic Flaw
The Motorola PEBL U6, the Motorola V600, and possibly the Motorola E398 and other Motorola phones allow remote attackers to add an entry for their own Bluetooth device to a target device's list of trusted devices aka Device History, and possibly obtain AT level access to the target device, by...