exploits , vulnerabilities , articles , WIDCOMM Bluetooth Communication Software Multiple Unspecified Buffer Overflow Vulnerabilities

Title	WIDCOMM Bluetooth Communication Software Multiple Unspecified Buffer Overflow Vulnerabilities
Published	2004-08-11-12:00AM
Updated	2005-12-05-05:41PM
Class	Boundary Condition Error
CVE	CAN-2004-0775
Remote	Yes
Local	No
Credit	Discovery is credited to Mark Rowe and Matt Moore of Pentest Limited.
Vulnerable	WIDCOMM BTStackServer 1.4.2 .10 WIDCOMM BTStackServer 1.3.2 .7 WIDCOMM Bluetooth Communication Software 1.4.1 .03 HP IPAQ 2215 HP IPAQ 5450
Not Vulnerable	WIDCOMM BTW WIDCOMM BT-CE/PPC 3.0
Code	The researchers responsible for discovering these issues have developed a proof of concept to trigger the vulnerabilities. This proof of concept is not available to the public at the moment. KF <kf_lists@digitalmunition.com> has created an exploit for one of these issues. A patch to alter ussp-push-0.4 is provided in the referenced email from KF, "have you ever been BluePIMped?".
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
• 2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
• 2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
• 2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities
• 2009-12-14 MySQL Multiple Remote Denial Of Service Vulnerabilities
• 2009-12-14 Digital Scribe Multiple SQL Injection Vulnerabilities
• 2009-12-14 Microsoft WordPad and Office Text Converters Word 97 File Parsing Memory Corruption Vulnerability
• 2009-12-14 Microsoft Protected Extensible Authentication Protocol Memory Corruption Vulnerability
• 2009-12-14 WebKit Web Inspector Cross Site Scripting Vulnerability
• 2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Tue, 15 Dec 2009 13:22:36 +0000