CVE-2006-0670 - OpenCVE

Buffer overflow in l2cap.c in hcidump 1.29 allows remote attackers to cause a denial of service (crash) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Bluez Project	Hcidump

Configuration 1 [-]

cpe:2.3:a:bluez_project:hcidump:1.29:*:*:*:*:*:*:*

References

Link	Resource
http://marc.info/?l=full-disclosure&m=113924625825488&w=2
http://secunia.com/advisories/18741	Vendor Advisory
http://secunia.com/advisories/18971
http://secunia.com/advisories/19122
http://securityreason.com/securityalert/465
http://www.debian.org/security/2006/dsa-990
http://www.mandriva.com/security/advisories?name=MDKSA-2006:041
http://www.osvdb.org/23056
http://www.secuobs.com/news/05022006-bluetooth9.shtml#english	Exploit
http://www.securityfocus.com/archive/1/424133/100/0/threaded
http://www.ubuntu.com/usn/usn-256-1
http://www.vupen.com/english/advisories/2006/0479
https://exchange.xforce.ibmcloud.com/vulnerabilities/24533

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-02-13T22:00:00

Updated: 2018-10-19T14:57:01

Reserved: 2006-02-13T00:00:00

Link: CVE-2006-0670

JSON object: View

NVD Information

Status : Modified

Published: 2006-02-13T22:02:00.000

Modified: 2018-10-19T15:45:47.037

Link: CVE-2006-0670

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-02-06T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in l2cap.c in hcidump 1.29 allows remote attackers to cause a denial of service (crash) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20060206 [ Secuobs - Advisory ] Bluetooth : DoS on hcidump", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://marc.info/?l=full-disclosure&m=113924625825488&w=2"}, {"name": "MDKSA-2006:041", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:041"}, {"name": "23056", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/23056"}, {"name": "18971", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18971"}, {"name": "ADV-2006-0479", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/0479"}, {"name": "DSA-990", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2006/dsa-990"}, {"name": "18741", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18741"}, {"name": "20060206 [ Secuobs - Advisory ] Bluetooth : DoS on hcidump 1.29 + PoC", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/424133/100/0/threaded"}, {"name": "USN-256-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-256-1"}, {"name": "hcidump-bluetooth-dos(24533)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24533"}, {"name": "465", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/465"}, {"tags": ["x_refsource_MISC"], "url": "http://www.secuobs.com/news/05022006-bluetooth9.shtml#english"}, {"name": "19122", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19122"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-0670", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in l2cap.c in hcidump 1.29 allows remote attackers to cause a denial of service (crash) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20060206 [ Secuobs - Advisory ] Bluetooth : DoS on hcidump", "refsource": "FULLDISC", "url": "http://marc.info/?l=full-disclosure&m=113924625825488&w=2"}, {"name": "MDKSA-2006:041", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:041"}, {"name": "23056", "refsource": "OSVDB", "url": "http://www.osvdb.org/23056"}, {"name": "18971", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18971"}, {"name": "ADV-2006-0479", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/0479"}, {"name": "DSA-990", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2006/dsa-990"}, {"name": "18741", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18741"}, {"name": "20060206 [ Secuobs - Advisory ] Bluetooth : DoS on hcidump 1.29 + PoC", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/424133/100/0/threaded"}, {"name": "USN-256-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-256-1"}, {"name": "hcidump-bluetooth-dos(24533)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24533"}, {"name": "465", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/465"}, {"name": "http://www.secuobs.com/news/05022006-bluetooth9.shtml#english", "refsource": "MISC", "url": "http://www.secuobs.com/news/05022006-bluetooth9.shtml#english"}, {"name": "19122", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19122"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-0670", "datePublished": "2006-02-13T22:00:00", "dateReserved": "2006-02-13T00:00:00", "dateUpdated": "2018-10-19T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bluez_project:hcidump:1.29:*:*:*:*:*:*:*", "matchCriteriaId": "1618DA60-7B3D-4F35-AE1D-839EC44D2AB6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in l2cap.c in hcidump 1.29 allows remote attackers to cause a denial of service (crash) through a wireless Bluetooth connection via a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet."}, {"lang": "es", "value": "Desbordamiento de buf\u00e9r en l2cap.c en hcidump 1.29 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de una conexi\u00f3n inal\u00e1mbrica de Bluetooth a trav\u00e9s de un paquete Logical Link Control and Adaptation Protocol (L2CAP) malformado."}], "id": "CVE-2006-0670", "lastModified": "2018-10-19T15:45:47.037", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-02-13T22:02:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=full-disclosure&m=113924625825488&w=2"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/18741"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/18971"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/19122"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/465"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2006/dsa-990"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:041"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/23056"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.secuobs.com/news/05022006-bluetooth9.shtml#english"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/424133/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.ubuntu.com/usn/usn-256-1"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/0479"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24533"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187945\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", "lastModified": "2006-09-19T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}