Menu

Database

btscanner

WVE ID: WVE-2005-0044

Type: Exploit

Status: Candidate

Classification:
Other

Description:
btscanner is a Bluetooth discovery tools for Linux utilzing the curses UI.

Discussion:
btscanner can find devices in discoverable mode by performing inquiry scans. In addition it can perform brute-force scanning to attempt to find devices in non-discoverable mode.

Once a device has been discovered. btscanner obtains its HCI and SDP information and logs it. One particularly interesting thing about btscanner is it includes BD_ADDR ranges of devices vulnerable to BlueSnarfing. Thus when a device is discovered within these ranges it is flagged as being vulnerable to the attack.

Credits
Author: Tim Herman (tim.hurman@pentest.co.uk) : Pentest Limited

References
URL: http://www.pentest.co.uk/cgi-bin/viewcat.cgi?cat=downloads&section=01_bluetooth
WVE: WVE-2005-0003

Released: 2003-11-15

Submitter
Andrew Lockhart (alockhart@networkchemistry.com) : Network Chemistry

Submitted: Tue Nov 29 17:22:50 -0800 2005

Candidate Date: Tue Nov 29 17:29:08 -0800 2005


Recent Entries

Weaknesses in the A5/1 Cipher
WVE-2008-0007 4/9/2008
Block ACK DoS
WVE-2008-0006 4/9/2008
GF Mode WIDS Rogue AP Evasion
WVE-2008-0005 4/9/2008
HT Intolerant Degradation of Service
WVE-2008-0004 4/9/2008
Sidejacking
WVE-2008-0003 4/2/2008
ZiPhone
WVE-2008-0002 4/2/2008
RADIUS Key Delivery Exposure
WVE-2008-0001 3/21/2008
BackTrack
WVE-2007-0020 11/19/2007
Airoscript
WVE-2007-0019 11/19/2007
airoway.sh
WVE-2007-0018 11/19/2007
More Entries...

News

SANS Institute Sponsors WVE
4/19/2008
Wireless Attackers and Honeypot Technology
4/15/2008
High Speed Risks in 802.11n Slides Posted
4/11/2008
Vulnerabilities in 802.11n
4/9/2008
WVE Editors Speaking at SHARKFEST.08
1/3/2008
More News...