Info

Disclosure

Jan 12, 2006

Discovery

Unknown

Dates

Exploit

Jan 12, 2006

Solution

Unknown

Description

Toshiba's Bluetooth Stack contains a flaw that allows a remote attacker to upload arbitrary files to the target computers's file system, using 'OBEX Push' calls. The issue is due to the stack not properly sanitizing user input, specifically traversal style attacks (../../) supplied via a client software.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Toshiba Corporation	Bluetooth Stack	4.00.23(T)
		4.00.11
		3.0

References

Security Tracker: 1015486
Bugtraq ID: 16236
Secunia Advisory ID: 18437
CVE ID: 2006-0212 (see also: NVD)
VUPEN Advisory: ADV-2006-0184
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0450.html
Other Advisory URL: http://www.digitalmunition.com/DMA%5B2006-0112a%5D.txt
Vendor URL: http://www.toshiba-tro.de/

Credit

Kevin Finisterre - kfdigitalmunition.com -

Direct URL: http://osvdb.org/22380

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Toshiba Corporation

Bluetooth Stack

References

Credit