Buffer Overflow Vulnerability in Motorola PEBL U6 and Other P2K-Based Phones
CVE-2006-1366

Currently unrated

Key Information:

Vendor: Motorola
Status: Pebl U6
Vendor: CVE Published:; 23 March 2006

What is CVE-2006-1366?

A buffer overflow vulnerability exists in the Motorola PEBL U6 and possibly other Motorola P2K-based smartphones. This flaw can be exploited by remote attackers through a specially crafted OBEX setpath command directed at the OBEX File Transfer service on Bluetooth channel 9. Due to this vulnerability, attackers could induce a denial of service, causing the device to shut down unexpectedly, and in certain scenarios, they may also manage to execute arbitrary code on the affected devices.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25401

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/428431/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/19319

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 23, 2006
Vulnerability Reserved
Mar 23, 2006