Bluetooth Vulnerability in Motorola PEBL U6 and V600 Devices
CVE-2006-1367

Currently unrated

Key Information:

Vendor: Motorola
Status: V600; Pebl U6
Vendor: CVE Published:; 23 March 2006

What is CVE-2006-1367?

The Bluetooth connection flaw in specific Motorola devices including the PEBL U6 and V600 allows unauthorized access to sensitive information. Attackers can exploit this vulnerability by connecting to the headset audio gateway service without requiring the user to pair their device. Through a method known as the 'Blueline' attack, a user can be tricked into granting access, leading to potential exposure of phonebook entries and saved SMS messages. The attack is facilitated by a GUI misrepresentation issue that allows attackers to substitute default messages with their own, further increasing the risk of exploitation.

References

http://www.securityfocus.com/archive/1/428431/100/0/threaded

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/25402

vdb-entryx_refsource_XF

http://secunia.com/advisories/19319

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 23, 2006
Vulnerability Reserved
Mar 23, 2006