Home > Hacking > Bluetooth Hacking



Bluetooth Security Issues, threats and consequences

Sort Desciption:

Pentest Limited 2004. All rights reserved. Mark Rowe, Tim Hurman. Pentest Ltd. Bluetooth Security. Issues, threats and consequences ...



Content Inside:

© Pentest Limited 2004. All rights reserved Mark Rowe, Tim Hurman Pentest Ltd. Bluetooth Security Issues, threats and consequences © Pentest Limited 2004. All rights reserved Agenda • Issues and origins • Threat sources • Risks • Demonstration © Pentest Limited 2004. All rights reserved A common misconception • No practical Bluetooth vulnerabilities • The core Bluetooth protocol has maintained its integrity • A correctly implemented Bluetooth stack should have no vulnerabilities • Analogy: Blaming TCP/IP for an IIS vulnerability © Pentest Limited 2004. All rights reserved So what are the issues • RFCOMM services • Host Bluetooth implementation • Most major Bluetooth platforms have vulnerabilities © Pentest Limited 2004. All rights reserved Specifics • Bad host stack implementation • Incorrect IrMC filesystem permissions • Badly implemented services • Open channels © Pentest Limited 2004. All rights reserved Vulnerability origins • Bad coding practices when developing RFCOMM services • Lack of knowledge regarding Bluetooth or other (OBEX) security protocols • Re-use of older services for different protocols • “Bluetooth is secure” - just plug in and go © Pentest Limited 2004. All rights reserved Affected devices • A small number of Bluetooth implementations are common across many platforms • The most popular devices are vulnerable • Result is a large number of affected devices in public • Tests show between 85% and 94% vulnerability © Pentest Limited 2004. All rights reserved IrMC permissions • IrMC defines a set of access permissions for common objects • Objects viewable on non-paired services • Permissions not followed • Intentionally open • Allows exploitation of open IrMC services © Pentest Limited 2004. All rights reserved Stack/Service errors • Failures in basic stack implementation • Buffer overflows • Manufacturers have chosen to ignore and not release patches • F ...

Source: www.pentest.co.uk


add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us
Search Terms:

 

Related Files

An Ethical Guide to Hacking Mobile Phones - By Ankit Fadia

Filed under: Hacking and Bluetooth Hacking
An Ethical Guide to Hacking Mobile Phones - By Ankit Fadia 1. Security Threats Bluetooth Hacking • Introduction • Working • Case Studies • Types of Bluetooth Threats ...

Bluetooth Hacking

Filed under: Hacking and Bluetooth Hacking
3 Bluetooth Hacking BT Technology Overview BT Technology Overview BT Technology -A general cable replacement for low range wireless standards (eg. IrDA) -Usage : information ...

Bluetooth Hacking Full Disclosure

Filed under: Hacking and Bluetooth Hacking
Bluetooth architecture ● Hardware layer ● Radio, Baseband and Link Manager ● Access through the Host Controller Interface - Standards for USB and UART ● Host protocols ● ...

Bluetooth Hacking

Filed under: Hacking and Bluetooth Hacking
Bluetooth Hacking - Historia - Introducci n - La stack de GNU/Linux: BlueZ - Aplicaciones ... Es el equivalente a tcpdump sobre bluetooth. ...

Taking the Teeth Out of Bluetooth Phracking

Filed under: Hacking and Bluetooth Hacking
Cracking is the correct term for malicious hacking. Following the classic security mantra ... counter-hacks that untethered communicators can use to foil the would-be phracker. BLUETOOTH ...