| Author |
SE phones vulnerable to DoS attacks |
axxxr
Joined: Mar 21, 2003
Posts: > 500
From: Londinium
PM, WWW
|
If you use a  mobile phone, you may want to disable the Bluetooth function, the French Security Incident Response Team
FrSIRT warned this week, saying a security vulnerability potentially puts the phones at risk to a denial-of-service (DoS) attack.
The vulnerability is said to exist in at least four models: the K600i, V600i, W800i, and T68i. The flaw is the result of an error in the Bluetooth function, according to an advisory posted on the group's Web site. L2CAP (Logical Link Control and Adaptation Layer Protocol) packets containing certain headers "could be exploited by remote attackers to cause a denial of service," it said.
However users don't need to lose much sleep over the vulnerability, which FrSIRT classified as "low risk." The group advised users to turn off the Bluetooth functions in their phones as a solution to the problem.
[addsig] | |
|
max_wedge
Joined: Aug 29, 2004
Posts: > 500
From: Australia
PM, WWW
|
think I'll wait till it happens. If I get a bt dos attack, then I'll turn off my bluetooth, but if you get a bluetooth dos attack it's only going to be a problem if you are trying to use bluetooth, in which case how does turning it off help? 
Basically it sounds like if such an attack happens you cannot use bluetooth either way. I woulda thought just setting bluetooth to hidden would be enough to avoid a dos attack? Other hidden devices with which you already have a paired connection would be available despite the dos attack going on around you?
| |
|
Access the forum with a mobile phone via esato.mobi
|
Posted: 2006-02-13 16:38
