Vulnerability Details CVE-2006-6908
Buffer overflow in the Bluetooth Stack COM Server in the Widcomm Bluetooth stack, as packaged as Widcomm Stack 3.x and earlier on Windows, Widcomm BTStackServer 1.4.2.10 and 1.3.2.7 on Windows, Widcomm Bluetooth Communication Software 1.4.1.03 on Windows, and the Bluetooth implementation in Windows Mobile or Windows CE on the HP IPAQ 2215 and 5450, allows remote attackers to cause a denial of service (service crash) and possibly execute arbitrary code via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.504
EPSS Ranking 97.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf
- http://osvdb.org/37587
- http://www.securityfocus.com/archive/1/455889/100/0/threaded
- http://events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf
- http://osvdb.org/37587
- http://www.securityfocus.com/archive/1/455889/100/0/threaded
Products affected by CVE-2006-6908
-
cpe:2.3:a:broadcom:widcomm_bluetooth:*
-
cpe:2.3:a:broadcom:widcomm_bluetooth:1.4.1.03
-
cpe:2.3:o:broadcom:widcomm_bluetooth:1.3.2.7
-
cpe:2.3:o:broadcom:widcomm_bluetooth:1.4.2.10
-
cpe:2.3:o:microsoft:windows_embedded_compact:-
-
cpe:2.3:o:microsoft:windows_embedded_compact:1.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:1.01
-
cpe:2.3:o:microsoft:windows_embedded_compact:2.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:2.10
-
cpe:2.3:o:microsoft:windows_embedded_compact:2.11
-
cpe:2.3:o:microsoft:windows_embedded_compact:2.12
-
cpe:2.3:o:microsoft:windows_embedded_compact:3.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:3.0.11171
-
cpe:2.3:o:microsoft:windows_embedded_compact:3.0.9348
-
cpe:2.3:o:microsoft:windows_embedded_compact:4.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:4.1
-
cpe:2.3:o:microsoft:windows_embedded_compact:4.2
-
cpe:2.3:o:microsoft:windows_embedded_compact:4.20.1081
-
cpe:2.3:o:microsoft:windows_embedded_compact:4.21.1088
-
cpe:2.3:o:microsoft:windows_embedded_compact:5.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:5.1.1700
-
cpe:2.3:o:microsoft:windows_embedded_compact:5.2.318
-
cpe:2.3:o:microsoft:windows_embedded_compact:6.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:7.0
-
cpe:2.3:o:microsoft:windows_embedded_compact:8.0
-
cpe:2.3:o:microsoft:windows_mobile:-
-
cpe:2.3:o:microsoft:windows_mobile:2003
-
cpe:2.3:o:microsoft:windows_mobile:2003_se
-
cpe:2.3:o:microsoft:windows_mobile:2005
-
cpe:2.3:o:microsoft:windows_mobile:5.0
-
cpe:2.3:o:microsoft:windows_mobile:6.0
-
cpe:2.3:o:microsoft:windows_mobile:6.1
-
cpe:2.3:o:microsoft:windows_mobile:6.5
-
cpe:2.3:o:microsoft:windows_mobile:8.0
-
cpe:2.3:o:microsoft:windows_mobile:8.1