Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
WVE ID: WVE-2005-0007
Type: Vulnerability
Status: Candidate
Classification:
Authentication Management
Hijacking
Information Disclosure
Description:
The HeloMoto vulnerability is a combination of the BlueBug and BlueSnarf attacks, yielding nearly full control of a vulnerable device. The vulnerability was first discovered in Motorola phones, hence its name.
Discussion:
To exploit the HeloMoto vulnerability an attacker connects to the device's OBEX Push Profile and initiates the sending of a vCard. By transmitting a vCard to the affected device, the attacker's Bluetooth device is automatically added to the vulnerable device's list of trusted devices. During the transmission it is interrupted by the attacker. After this, the attacker may connect to the device's headset profile without authenticating. This profile operates over an RFCOMM channel, thus an attacker now has access to the phone and can take control of it through AT commands.
Credits
Author:
Adam
Laurie
(adam@trifinite.org)
: trifinite.org
References
URL:
http://trifinite.org/trifinite_stuff_helomoto.html
Released: 2005-04-01
Submitter
Andrew
Lockhart
(alockhart@networkchemistry.com)
: Network Chemistry
Submitted: Tue Oct 18 11:38:18 -0700 2005
Candidate Date: Mon Oct 24 09:57:05 -0700 2005
