Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
WVE ID: WVE-2005-0006
Type: Vulnerability
Status: Candidate
Classification:
Hijacking
Information Disclosure
Description:
BlueSnarf++ is a variation on the BlueSnarf vulnerability. This vulnerability allows the attacker to fully browse the vulnerable device's filesystem and not only read, but write data to the device.
Discussion:
Devices that are vulnerable to the BlueSnarf++ vulnerability implement the OBEX Push service through a full-fledged OBEX FTP server rather than using a simplified server that only supports a subset of the OBEX protocol. This allows the attacker to connect to the device using an OBEX FTP client and issue commands much in the same way that one would to a regular FTP server. Thus the limitation of the attacker needing to know what file they want to retrieve has been removed.
The filesystem of the device can be browsed with the 'ls' command. In addition to being able to retrieve arbitrary files, it is possible for an attacker to overwrite files on the device or remove them.
Currently, the makes and models of phone devices that are affected have not been disclosed.
Credits
Author:
Martin
Herfurt
(martin@trifinite.org)
: trifinite.org
Author:
Marcel
Holtmann
(marcel@trifinite.org)
: trifinite.org
Author:
Adam
Laurie
(adam@trifinite.org)
: trifinite.org
References
URL:
http://trifinite.org/trifinite_stuff_bluesnarfpp.html
URL:
http://trifinite.org/Downloads/trifinite.presentation_blackhat.pdf
Released: 2005-04-01
Submitter
Andrew
Lockhart
(alockhart@networkchemistry.com)
: Network Chemistry
Submitted: Tue Oct 18 11:25:42 -0700 2005
Candidate Date: Mon Oct 24 09:55:17 -0700 2005
