Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Vulnerability in Bluetooth Software Allows Users to Play Music in Remote computers
Posted on 20-Dec-2005 09:00 | Tags Filed under: News



The Digital Munition group have found a vulnerability that allows unauthorized remote access to PC Bluetooth audio profile.

According to the text of the advisory, users with proper software can eavesdrop a PC that has Widcomm Bluetooth software and a microphone, or play audio on the target PC.

This happens because the default security settings for headset services is low, not requiring any authentication. Of course this requires close range to work.

The exploit can be only accomplished if the victim's PC is running the Widcomm Bluetooth software. It won't affect other stacks such as the Microsoft Bluetooth (Service Pack 2) or BlueSoleil.

A workaround this vulnerability is to set authentication for the Headset Audio Gateway profile, and set Bluetooth to non-discoverable mode.

Accordin to F-Secure, setting your PC Bluetooth to non-discoverable will not remove the problem completely, as your PC can still be found by brute force scanning. But it will significantly limit the exposure.


More information: http://www.digitalmunition.com/DMA%5B2005-121...
News source: http://www.f-secure.com/weblog/#00000741...




comments powered by Disqus


Trending now »

Hot discussions in our forums right now:

Bombing at Manchester concert, 19 dead
Created by Rikkitic, last reply by Rikkitic on 28-May-2017 19:06 (174 replies)
Pages... 10 11 12


Father banned from watching daughter's netball game: what you think of this?
Created by Rikkitic, last reply by frankv on 25-May-2017 16:29 (136 replies)
Pages... 8 9 10


Tailgaters?
Created by Linuxluver, last reply by reg52nz on 25-May-2017 16:29 (113 replies)
Pages... 6 7 8


The President Of The USA: Donald Trump
Created by TimA, last reply by frankv on 29-May-2017 09:55 (4373 replies)
Pages... 290 291 292


Tipping? Please no!
Created by BlueShift, last reply by cddt on 27-May-2017 10:10 (104 replies)
Pages... 5 6 7


Fibre 100/20 Mbps plan - should I get this speed
Created by steve2222, last reply by DarkShadow on 28-May-2017 10:14 (18 replies)
Pages... 2


Sony smart TV functions
Created by Rikkitic, last reply by Rikkitic on 28-May-2017 21:25 (17 replies)
Pages... 2


Tax Cuts
Created by tdgeek, last reply by MikeAqua on 29-May-2017 10:16 (82 replies)
Pages... 4 5 6