Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-314: Vulnerability in Bluetooth Stack

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-314: Vulnerability in Bluetooth Stack
# 1  
Old 06-12-2008
S-314: Vulnerability in Bluetooth Stack
A remote code execution vulnerability exists in the Bluetooth stack in Microsoft Windows because the Bluetooth stack does not correctly handle a large nubmer of service description requests. The risk is MEDIUM. The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulenrability could take complete contorl of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

6 More Discussions You Might Find Interesting

1. Linux

Bluetooth

I have a bluetooth device, and when i search for a device it doesnt show anything,i have downloaded bluman blueberry bluedevil bluez but nothng worked,im using linux mint 18.2. (2 Replies)
Discussion started by: Lee win
2 Replies

2. UNIX for Dummies Questions & Answers

Kernel Stack vs User Mode Stack

Hi, I am new to the linux kernel development area. I want to know what is the difference between kernel mode stack and user mode stack? Does each process has a user mode stack and a kernel mode stack?? Or Each process has a user mode stack and there is only one kernel mode stack that is shared by... (4 Replies)
Discussion started by: saurabhkoar
4 Replies

3. Windows & DOS: Issues & Discussions

Bluetooth problem ...?

my bluetooth dongle (not branded ) is working fine with KDEBluetooth in opensuse 10.3 (linux) but it is not even detected in windows after installation of software given with dongle( IVT Bluesoleil) what is proble can any body give list of blue... (0 Replies)
Discussion started by: seshumohan
0 Replies

4. Red Hat

Bluetooth in fedora

My system has bluetooth enabled in it. I have fedora o.s.. I can send data from my system to any other external devices which are bluetooth enabled. But from external devices, I can not send data into my laptop system. What can be done. Please guide. (0 Replies)
Discussion started by: manoj.b
0 Replies

5. HP-UX

HP-UX to bluetooth printer

Wondering if anyone can point me in the right direction to get HP-UX (Ver 5.4 I believe) to send a print job to a bluetooth enabled printer. I can do it via TCP/IP but would like to have it also bluetooth capable when I don't have access to a network connection. Any idea? Thanks in advance. ... (0 Replies)
Discussion started by: RUNG41
0 Replies

6. Programming

what is stack winding and stack unwinding

helo can u tell me what do you mean by stack winding and stack unwinding Regards, Amit (2 Replies)
Discussion started by: amitpansuria
2 Replies
Login or Register to Ask a Question

LEARN ABOUT PHP

ng_bluetooth

NG_BLUETOOTH(4) 					   BSD Kernel Interfaces Manual 					   NG_BLUETOOTH(4)

NAME

     ng_bluetooth -- placeholder for global Bluetooth variables

SYNOPSIS

     #include <sys/types.h>
     #include <netgraph/bluetooth/include/ng_bluetooth.h>

DESCRIPTION

     The ng_bluetooth module is a placeholder for global Bluetooth variables.  All Bluetooth variables can be examined and changed via sysctl(8).

   Bluetooth Variables
     Below is the description of default variables.  Each Bluetooth module might add its own variables to the tree.

     net.bluetooth.version
	     A read-only integer variable that shows the current version of the Bluetooth stack.

     net.bluetooth.hci.command_timeout
	     A read-write integer variable that controls the Host Controller Interface (HCI) command timeout (in seconds), i.e., how long the HCI
	     layer will wait for the Command_Complete or Command_Status event from a Bluetooth device.

     net.bluetooth.hci.connection_timeout
	     A read-write integer variable that controls the HCI connection timeout, i.e. how long the HCI layer will wait for the
	     Connection_Complete event.  Normally this should not be required as Bluetooth devices have connection timeout of their own and will
	     send event back.  This timeout is required to ensure that no connection will stall in case when the HCI transport layer is broken.
	     Be careful when changing this variable.  Make sure you understand what you are doing.

     net.bluetooth.hci.max_neighbor_age
	     A read-write integer variable that controls time-to-live (in seconds) for entries in the HCI neighbor cache.  Every time a Bluetooth
	     device performs an Inquiry operation, the results will be put in cache.  Later when a Bluetooth device establishes a baseband connec-
	     tion, it will try to find the matching entry in the cache and use it.  This might speed up establishment of the baseband connection.

     net.bluetooth.l2cap.rtx_timeout
	     A read-write integer variable that controls the Link Layer Control and Adaptation Protocol (L2CAP) Retransmission Timeout (RTX) (in
	     seconds).	Every time the L2CAP layer submits a control command, the RTX timeout is set.  The value of the RTX timeout should be
	     greater or equal to the value of the HCI connection timeout.  Be careful when changing this variable.  Make sure you understand what
	     you are doing.

     net.bluetooth.l2cap.ertx_timeout
	     A read-write integer variable that controls the L2CAP Extended Retransmission Timeout (ERTX) (in seconds).  In some cases remote peer
	     may respond with PENDING status to the L2CAP control command.  In this case the L2CAP command timeout is reset to the ERTX timeout
	     value.  The value of the ERTX timeout should be greater or equal to the value of the RTX timeout.	Be careful when changing this
	     variable.	Make sure you understand what you are doing.

SEE ALSO

     ng_btsocket(4), ng_hci(4), ng_l2cap(4), sysctl(8)

HISTORY

     The ng_bluetooth module was implemented in FreeBSD 5.0.

AUTHORS

     Maksim Yevmenkin <m_evmenkin@yahoo.com>

BSD
								 November 9, 2002							       BSD