Menu

Database

BlueSmack

WVE ID: WVE-2005-0005

Type: Vulnerability

Status: Candidate

Classification:
Denial of Service

Description:
BlueSmack is a vulnerability in the L2CAP layer of some Bluetooth devices that results in a Denial of Service.

Discussion:
The L2CAP layer in Bluetooth allows for echo requests much like an ICMP ping. This vulnerability stems from a device's inability to handle large L2CAP ping requests, resulting in a buffer overflow on the receiving device (similar to an ICMP ping-of-death). BlueSmack has been demonstrated to cause some receiving devices to lock up. It is also potentially possible for an attacker to craft arbitrary code to be injected onto the receiving device through this method.

It is currently unknown what devices this vulnerability affects.

Credits
Author: Adam Laurie (adam@trifinite.org) : trifinite.org
Author: Marcel Holtmann (marcel@trifinite.org) : trifinite.org
Author: Martin Herfurt (martin@trifinite.org) : trifinite.org

References
URL: http://trifinite.org/trifinite_stuff_bluesmack.html

Released: 2005-10-06

Submitter
Andrew Lockhart (alockhart@networkchemistry.com) : Network Chemistry

Submitted: Mon Oct 24 09:54:48 -0700 2005

Candidate Date: Thu Oct 06 14:34:07 -0700 2005


Recent Entries

Weaknesses in the A5/1 Cipher
WVE-2008-0007 4/9/2008
Block ACK DoS
WVE-2008-0006 4/9/2008
GF Mode WIDS Rogue AP Evasion
WVE-2008-0005 4/9/2008
HT Intolerant Degradation of Service
WVE-2008-0004 4/9/2008
Sidejacking
WVE-2008-0003 4/2/2008
ZiPhone
WVE-2008-0002 4/2/2008
RADIUS Key Delivery Exposure
WVE-2008-0001 3/21/2008
BackTrack
WVE-2007-0020 11/19/2007
Airoscript
WVE-2007-0019 11/19/2007
airoway.sh
WVE-2007-0018 11/19/2007
More Entries...

News

SANS Institute Sponsors WVE
4/19/2008
Wireless Attackers and Honeypot Technology
4/15/2008
High Speed Risks in 802.11n Slides Posted
4/11/2008
Vulnerabilities in 802.11n
4/9/2008
WVE Editors Speaking at SHARKFEST.08
1/3/2008
More News...