Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1366

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2006-1366
Last Modified 07 Mar 2011 09:32:53
Published 23 Mar 2006 06:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1366

Summary

Buffer overflow in the Motorola PEBL U6 08.83.76R, and possibly other Motorola P2K-based phones, allows remote attackers to cause a denial of service (device shutdown), and possibly execute arbitrary code, via a long OBEX setpath to the OBEX File Transfer (aka FTP) service on Bluetooth channel 9.

Vulnerable Systems


References

VUPEN - ADV-2006-1045

BID - 17185

BUGTRAQ - 20060321 DMA[2006-0321a] - 'Motorola P2K Platform setpath() overflow and Blueline attack'

MISC - http://www.digitalmunition.com/DMA[2006-0321a].txt

SECUNIA - 19319

XF - motorola-peblu6-v600-obex-bo(25401)


Last Updated: 27 May 2016 10:42:02