ID CVE-2006-6899
Summary hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
References
Vulnerable Configurations
  • cpe:2.3:o:bluez_project:bluez:2.24
    cpe:2.3:o:bluez_project:bluez:2.24
CVSS
Base: 5.4 (as of 08-01-2007 - 16:39)
Impact:
Exploitability:
CWE CWE-16
CAPEC
Access
VectorComplexityAuthentication
ADJACENT_NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
exploit-db via4
description BlueZ 1.x/2.x HIDD Bluetooh HID Command Injection Vulnerability. CVE-2006-6899 . Remote exploit for linux platform
id EDB-ID:29471
last seen 2016-02-03
modified 2007-11-16
published 2007-11-16
reporter Collin Mulliner
source https://www.exploit-db.com/download/29471/
title BlueZ 1.x/2.x - HIDD Bluetooh HID Command Injection Vulnerability
nessus via4
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2007-0065.NASL
    description Updated bluez-utils packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The bluez-utils package contains Bluetooth daemons and utilities. A flaw was found in the Bluetooth HID daemon (hidd). A remote attacker would have been able to inject keyboard and mouse events via a Bluetooth connection without any authorization. (CVE-2006-6899) Note that Red Hat Enterprise Linux does not come with the Bluetooth HID daemon enabled by default. Users of bluez-utils are advised to upgrade to these updated packages, which contains a backported patch to correct this issue.
    last seen 2019-02-21
    modified 2018-11-16
    plugin id 25238
    published 2007-05-16
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25238
    title RHEL 4 : bluez-utils (RHSA-2007:0065)
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2007-0065.NASL
    description From Red Hat Security Advisory 2007:0065 : Updated bluez-utils packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The bluez-utils package contains Bluetooth daemons and utilities. A flaw was found in the Bluetooth HID daemon (hidd). A remote attacker would have been able to inject keyboard and mouse events via a Bluetooth connection without any authorization. (CVE-2006-6899) Note that Red Hat Enterprise Linux does not come with the Bluetooth HID daemon enabled by default. Users of bluez-utils are advised to upgrade to these updated packages, which contains a backported patch to correct this issue.
    last seen 2019-02-21
    modified 2018-08-13
    plugin id 67448
    published 2013-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=67448
    title Oracle Linux 4 : bluez-utils (ELSA-2007-0065)
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2007-014.NASL
    description hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack. hidd is not enabled by default on Mandriva 2006.0. This update adds the --nocheck option (disabled by default) to the hidd binary, which defaults to rejecting connections from unknown devices unless --nocheck is enabled. The updated packages have been patched to correct this problem
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 24630
    published 2007-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24630
    title Mandrake Linux Security Advisory : bluez-utils (MDKSA-2007:014)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20070514_BLUEZ_UTILS_ON_SL4_X.NASL
    description A flaw was found in the Bluetooth HID daemon (hidd). A remote attacker would have been able to inject keyboard and mouse events via a Bluetooth connection without any authorization. (CVE-2006-6899)
    last seen 2019-02-21
    modified 2019-01-07
    plugin id 60179
    published 2012-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=60179
    title Scientific Linux Security Update : bluez-utils on SL4.x i386/x86_64
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2007-0065.NASL
    description Updated bluez-utils packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The bluez-utils package contains Bluetooth daemons and utilities. A flaw was found in the Bluetooth HID daemon (hidd). A remote attacker would have been able to inject keyboard and mouse events via a Bluetooth connection without any authorization. (CVE-2006-6899) Note that Red Hat Enterprise Linux does not come with the Bluetooth HID daemon enabled by default. Users of bluez-utils are advised to upgrade to these updated packages, which contains a backported patch to correct this issue.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 67038
    published 2013-06-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=67038
    title CentOS 4 : bluez-utils (CESA-2007:0065)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-413-1.NASL
    description A flaw was discovered in the HID daemon of bluez-utils. A remote attacker could gain control of the mouse and keyboard if hidd was enabled. This does not affect a default Ubuntu installation, since hidd is normally disabled. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 28002
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=28002
    title Ubuntu 5.10 : bluez-utils vulnerability (USN-413-1)
oval via4
accepted 2013-04-29T04:03:32.549-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 4
    oval oval:org.mitre.oval:def:11831
  • comment CentOS Linux 4.x
    oval oval:org.mitre.oval:def:16636
  • comment Oracle Linux 4.x
    oval oval:org.mitre.oval:def:15990
description hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
family unix
id oval:org.mitre.oval:def:10208
status accepted
submitted 2010-07-09T03:56:16-04:00
title hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
version 23
redhat via4
advisories
bugzilla
id 227014
title CVE-2006-6899 Bluetooth HID key events injection flaw
oval
AND
  • comment Red Hat Enterprise Linux 4 is installed
    oval oval:com.redhat.rhsa:tst:20060016001
  • OR
    • AND
      • comment bluez-utils is earlier than 0:2.10-2.2
        oval oval:com.redhat.rhsa:tst:20070065002
      • comment bluez-utils is signed with Red Hat master key
        oval oval:com.redhat.rhsa:tst:20070065003
    • AND
      • comment bluez-utils-cups is earlier than 0:2.10-2.2
        oval oval:com.redhat.rhsa:tst:20070065004
      • comment bluez-utils-cups is signed with Red Hat master key
        oval oval:com.redhat.rhsa:tst:20070065005
rhsa
id RHSA-2007:0065
released 2007-05-14
severity Moderate
title RHSA-2007:0065: bluez-utils security update (Moderate)
rpms
  • bluez-utils-0:2.10-2.2
  • bluez-utils-cups-0:2.10-2.2
refmap via4
bid 22076
bugtraq 20070104 23C3 - Bluetooth hacking revisted [Summary and Code]
mandriva MDKSA-2007:014
misc
osvdb 32830
secunia
  • 23747
  • 23798
  • 23879
  • 25264
ubuntu USN-413-1
vupen ADV-2007-0200
Last major update 07-03-2011 - 21:47
Published 31-12-2006 - 00:00
Last modified 16-10-2018 - 12:29
Back to Top