Menu

Database

HeloMoto

WVE ID: WVE-2005-0007

Type: Vulnerability

Status: Candidate

Classification:
Authentication Management
Hijacking
Information Disclosure

Description:
The HeloMoto vulnerability is a combination of the BlueBug and BlueSnarf attacks, yielding nearly full control of a vulnerable device. The vulnerability was first discovered in Motorola phones, hence its name.

Discussion:
To exploit the HeloMoto vulnerability an attacker connects to the device's OBEX Push Profile and initiates the sending of a vCard. By transmitting a vCard to the affected device, the attacker's Bluetooth device is automatically added to the vulnerable device's list of trusted devices. During the transmission it is interrupted by the attacker. After this, the attacker may connect to the device's headset profile without authenticating. This profile operates over an RFCOMM channel, thus an attacker now has access to the phone and can take control of it through AT commands.

Credits
Author: Adam Laurie (adam@trifinite.org) : trifinite.org

References
URL: http://trifinite.org/trifinite_stuff_helomoto.html

Released: 2005-04-01

Submitter
Andrew Lockhart (alockhart@networkchemistry.com) : Network Chemistry

Submitted: Tue Oct 18 11:38:18 -0700 2005

Candidate Date: Mon Oct 24 09:57:05 -0700 2005


Recent Entries

Weaknesses in the A5/1 Cipher
WVE-2008-0007 4/9/2008
Block ACK DoS
WVE-2008-0006 4/9/2008
GF Mode WIDS Rogue AP Evasion
WVE-2008-0005 4/9/2008
HT Intolerant Degradation of Service
WVE-2008-0004 4/9/2008
Sidejacking
WVE-2008-0003 4/2/2008
ZiPhone
WVE-2008-0002 4/2/2008
RADIUS Key Delivery Exposure
WVE-2008-0001 3/21/2008
BackTrack
WVE-2007-0020 11/19/2007
Airoscript
WVE-2007-0019 11/19/2007
airoway.sh
WVE-2007-0018 11/19/2007
More Entries...

News

SANS Institute Sponsors WVE
4/19/2008
Wireless Attackers and Honeypot Technology
4/15/2008
High Speed Risks in 802.11n Slides Posted
4/11/2008
Vulnerabilities in 802.11n
4/9/2008
WVE Editors Speaking at SHARKFEST.08
1/3/2008
More News...