Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
WVE ID: WVE-2005-0005
Type: Vulnerability
Status: Candidate
Classification:
Denial of Service
Description:
BlueSmack is a vulnerability in the L2CAP layer of some Bluetooth devices that results in a Denial of Service.
Discussion:
The L2CAP layer in Bluetooth allows for echo requests much like an ICMP ping. This vulnerability stems from a device's inability to handle large L2CAP ping requests, resulting in a buffer overflow on the receiving device (similar to an ICMP ping-of-death). BlueSmack has been demonstrated to cause some receiving devices to lock up. It is also potentially possible for an attacker to craft arbitrary code to be injected onto the receiving device through this method.
It is currently unknown what devices this vulnerability affects.
Credits
Author:
Adam
Laurie
(adam@trifinite.org)
: trifinite.org
Author:
Marcel
Holtmann
(marcel@trifinite.org)
: trifinite.org
Author:
Martin
Herfurt
(martin@trifinite.org)
: trifinite.org
References
URL:
http://trifinite.org/trifinite_stuff_bluesmack.html
Released: 2005-10-06
Submitter
Andrew
Lockhart
(alockhart@networkchemistry.com)
: Network Chemistry
Submitted: Mon Oct 24 09:54:48 -0700 2005
Candidate Date: Thu Oct 06 14:34:07 -0700 2005
