Remote Code Execution Vulnerability in BlueZ Bluetooth Software
CVE-2006-6899

Currently unrated

Key Information:

Vendor
Bluez Project
Status
Bluez
Vendor
CVE Published:
31 December 2006

Summary

A vulnerability in BlueZ (bluez-utils) versions prior to 2.25 allows attackers to exploit the configuration of Human Interface Device (HID) endpoints. By manipulating these endpoints, attackers can gain unauthorized control over devices such as mice and keyboards operating through Bluetooth. This could lead to significant security breaches, as attackers may execute commands remotely without user consent, compromising the integrity of the affected systems.

References

http://events.ccc.de/congress/2006-mediawiki//images/f/fb...
x_refsource_MISC
http://osvdb.org/32830
vdb-entryx_refsource_OSVDB
http://www.redhat.com/support/errata/RHSA-2007-0065.html
vendor-advisoryx_refsource_REDHAT

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.
CVE-2006-6899 : Remote Code Execution Vulnerability in BlueZ Bluetooth Software | SecurityVulnerability.io