cvelistv5 - cve-2006-5405

CVE-2006-5405 (GCVE-0-2006-5405)

Vulnerability from cvelistv5 – Published: 2006-10-19 01:00 – Updated: 2024-08-07 19:48

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://attrition.org/pipermail/vim/2006-October/0…	mailing-listx_refsource_VIM
	http://www.securityfocus.com/archive/1/448422/100…	mailing-listx_refsource_BUGTRAQ
	http://www.secureworks.com/press/20061011-dell.html	x_refsource_MISC
	http://briankrebswatch.blogspot.com/2006/10/more-…	x_refsource_MISC
	http://www.vupen.com/english/advisories/2006/4057	vdb-entryx_refsource_VUPEN
	http://securitytracker.com/id?1017075	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/22402	third-party-advisoryx_refsource_SECUNIA
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://securityreason.com/securityalert/1744	third-party-advisoryx_refsource_SREASON

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:48:30.510Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20061017 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_VIM",
              "x_transferred"
            ],
            "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
          },
          {
            "name": "20061012 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.secureworks.com/press/20061011-dell.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
          },
          {
            "name": "ADV-2006-4057",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4057"
          },
          {
            "name": "1017075",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017075"
          },
          {
            "name": "22402",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22402"
          },
          {
            "name": "toshiba-bluetooth-stack-code-execute(29503)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
          },
          {
            "name": "1744",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/1744"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-10-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20061017 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_VIM"
          ],
          "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
        },
        {
          "name": "20061012 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.secureworks.com/press/20061011-dell.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
        },
        {
          "name": "ADV-2006-4057",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4057"
        },
        {
          "name": "1017075",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017075"
        },
        {
          "name": "22402",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22402"
        },
        {
          "name": "toshiba-bluetooth-stack-code-execute(29503)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
        },
        {
          "name": "1744",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/1744"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-5405",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20061017 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
              "refsource": "VIM",
              "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
            },
            {
              "name": "20061012 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
            },
            {
              "name": "http://www.secureworks.com/press/20061011-dell.html",
              "refsource": "MISC",
              "url": "http://www.secureworks.com/press/20061011-dell.html"
            },
            {
              "name": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html",
              "refsource": "MISC",
              "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
            },
            {
              "name": "ADV-2006-4057",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4057"
            },
            {
              "name": "1017075",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017075"
            },
            {
              "name": "22402",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22402"
            },
            {
              "name": "toshiba-bluetooth-stack-code-execute(29503)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
            },
            {
              "name": "1744",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/1744"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-5405",
    "datePublished": "2006-10-19T01:00:00",
    "dateReserved": "2006-10-18T00:00:00",
    "dateUpdated": "2024-08-07T19:48:30.510Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:3.x:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44D096D3-9FDA-49B9-A5B9-D83CE2F6FD7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:4.x:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8F95EE1-2AAB-4185-9F75-53A87C01B425\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad no especificada en el driver del dispositivo de wireless del Toshiba Bluetooth para las versiones 3.x y 4, hasta la 4.00.35, como el usado en m\\u00faltiples productos, permite a los atacantes, f\\u00edsicamente pr\\u00f3ximos causar la denegaci\\u00f3n de servicio (ca\\u00edda), corrupci\\u00f3n de la memoria y la posibilidad de ejecutar c\\u00f3digo de su elecci\\u00f3n mediante paquetes Bluetooth artesanales.\"}]",
      "id": "CVE-2006-5405",
      "lastModified": "2024-11-21T00:19:06.360",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:H/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"HIGH\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 1.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2006-10-19T01:07:00.000",
      "references": "[{\"url\": \"http://attrition.org/pipermail/vim/2006-October/001085.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/22402\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securityreason.com/securityalert/1744\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1017075\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.secureworks.com/press/20061011-dell.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/448422/100/100/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4057\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/29503\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://attrition.org/pipermail/vim/2006-October/001085.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/22402\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securityreason.com/securityalert/1744\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1017075\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.secureworks.com/press/20061011-dell.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/448422/100/100/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4057\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/29503\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-5405\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-10-19T01:07:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el driver del dispositivo de wireless del Toshiba Bluetooth para las versiones 3.x y 4, hasta la 4.00.35, como el usado en m\u00faltiples productos, permite a los atacantes, f\u00edsicamente pr\u00f3ximos causar la denegaci\u00f3n de servicio (ca\u00edda), corrupci\u00f3n de la memoria y la posibilidad de ejecutar c\u00f3digo de su elecci\u00f3n mediante paquetes Bluetooth artesanales.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:H/Au:N/C:C/I:C/A:C\",\"baseScore\":6.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":1.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:3.x:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44D096D3-9FDA-49B9-A5B9-D83CE2F6FD7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:4.x:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8F95EE1-2AAB-4185-9F75-53A87C01B425\"}]}]}],\"references\":[{\"url\":\"http://attrition.org/pipermail/vim/2006-October/001085.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/22402\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securityreason.com/securityalert/1744\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1017075\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.secureworks.com/press/20061011-dell.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/448422/100/100/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4057\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/29503\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://attrition.org/pipermail/vim/2006-October/001085.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/22402\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securityreason.com/securityalert/1744\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1017075\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.secureworks.com/press/20061011-dell.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/448422/100/100/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4057\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/29503\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GSD-2006-5405

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-5405

Aliases

CVE-2006-5405

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-5405",
    "description": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets.",
    "id": "GSD-2006-5405"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-5405"
      ],
      "details": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets.",
      "id": "GSD-2006-5405",
      "modified": "2023-12-13T01:19:55.852253Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-5405",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20061017 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
            "refsource": "VIM",
            "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
          },
          {
            "name": "20061012 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
          },
          {
            "name": "http://www.secureworks.com/press/20061011-dell.html",
            "refsource": "MISC",
            "url": "http://www.secureworks.com/press/20061011-dell.html"
          },
          {
            "name": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html",
            "refsource": "MISC",
            "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
          },
          {
            "name": "ADV-2006-4057",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4057"
          },
          {
            "name": "1017075",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017075"
          },
          {
            "name": "22402",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22402"
          },
          {
            "name": "toshiba-bluetooth-stack-code-execute(29503)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
          },
          {
            "name": "1744",
            "refsource": "SREASON",
            "url": "http://securityreason.com/securityalert/1744"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:3.x:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:4.x:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-5405"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.secureworks.com/press/20061011-dell.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.secureworks.com/press/20061011-dell.html"
            },
            {
              "name": "22402",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/22402"
            },
            {
              "name": "20061017 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
              "refsource": "VIM",
              "tags": [],
              "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
            },
            {
              "name": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
            },
            {
              "name": "1017075",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1017075"
            },
            {
              "name": "1744",
              "refsource": "SREASON",
              "tags": [],
              "url": "http://securityreason.com/securityalert/1744"
            },
            {
              "name": "ADV-2006-4057",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4057"
            },
            {
              "name": "toshiba-bluetooth-stack-code-execute(29503)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
            },
            {
              "name": "20061012 SecureWorks Research Client Advisory: Multiple Vendor Bluetooth Memory Stack Corruption Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 1.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-17T21:42Z",
      "publishedDate": "2006-10-19T01:07Z"
    }
  }
}

VAR-200610-0239

Vulnerability from variot - Updated: 2023-12-18 12:46

Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets. Bluetooth Wireless Device Driver is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users.

Want to work within IT-Security?

Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit.

Currently the following type of positions are available: http://secunia.com/hardcore_disassembler_and_reverse_engineer/

TITLE: Toshiba Bluetooth Stack Memory Corruption Vulnerability

SECUNIA ADVISORY ID: SA22402

VERIFY ADVISORY: http://secunia.com/advisories/22402/

CRITICAL: Moderately critical

IMPACT: DoS, System access

WHERE:

From remote

SOFTWARE: Toshiba Bluetooth Stack 4.x http://secunia.com/product/6807/ Toshiba Bluetooth Stack 3.x http://secunia.com/product/6806/

DESCRIPTION: A vulnerability has been reported in Toshiba Bluetooth Stack, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

Successful exploitation requires knowledge of the Bluetooth device address.

The vulnerability is reported in version 3.x and versions 4 through 4.00.35. Other versions may also be affected.

NOTE: Products from other vendors using the Toshiba Bluetooth Stack may also be affected. The Toshiba Bluetooth Stack running on 64-bit platforms is reportedly not affected.

SOLUTION: Update to the latest version.

PROVIDED AND/OR DISCOVERED BY: David Maynor, SecureWorks and Jon Ellch.

ORIGINAL ADVISORY: http://www.secureworks.com/press/20061011-dell.html

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200610-0239",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "bluetooth wireless device driver",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "toshiba",
        "version": "4.x"
      },
      {
        "model": "bluetooth wireless device driver",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "toshiba",
        "version": "3.x"
      },
      {
        "model": "bluetooth wireless device driver",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "toshiba",
        "version": "3.x and  4 to  4.00.35"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:3.x:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:4.x:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unknown",
    "sources": [
      {
        "db": "BID",
        "id": "87177"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2006-5405",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 1.9,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "High",
            "accessVector": "Local",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 6.2,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2006-5405",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 1.9,
            "id": "VHN-21513",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:L/AC:H/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2006-5405",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200610-323",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-21513",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets. Bluetooth Wireless Device Driver is prone to a denial-of-service vulnerability. \nAttackers can exploit this issue to crash the affected application, denying service to legitimate users. \n\n----------------------------------------------------------------------\n\nWant to work within IT-Security?\n\nSecunia is expanding its team of highly skilled security experts. \nWe will help with relocation and obtaining a work permit. \n\nCurrently the following type of positions are available:\nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nToshiba Bluetooth Stack Memory Corruption Vulnerability\n\nSECUNIA ADVISORY ID:\nSA22402\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/22402/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS, System access\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nToshiba Bluetooth Stack 4.x\nhttp://secunia.com/product/6807/\nToshiba Bluetooth Stack 3.x\nhttp://secunia.com/product/6806/\n\nDESCRIPTION:\nA vulnerability has been reported in Toshiba Bluetooth Stack, which\ncan be exploited by malicious people to cause a DoS (Denial of\nService) and potentially compromise a vulnerable system. \n\nSuccessful exploitation requires knowledge of the Bluetooth device\naddress. \n\nThe vulnerability is reported in version 3.x and versions 4 through\n4.00.35. Other versions may also be affected. \n\nNOTE: Products from other vendors using the Toshiba Bluetooth Stack\nmay also be affected. The Toshiba Bluetooth Stack running on 64-bit\nplatforms is reportedly not affected. \n\nSOLUTION:\nUpdate to the latest version. \n\nPROVIDED AND/OR DISCOVERED BY:\nDavid Maynor, SecureWorks and Jon Ellch. \n\nORIGINAL ADVISORY:\nhttp://www.secureworks.com/press/20061011-dell.html\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "db": "PACKETSTORM",
        "id": "50988"
      }
    ],
    "trust": 2.07
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2006-5405",
        "trust": 2.8
      },
      {
        "db": "SECTRACK",
        "id": "1017075",
        "trust": 2.0
      },
      {
        "db": "SREASON",
        "id": "1744",
        "trust": 2.0
      },
      {
        "db": "SECUNIA",
        "id": "22402",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2006-4057",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "29503",
        "trust": 0.6
      },
      {
        "db": "VIM",
        "id": "20061017 SECUREWORKS RESEARCH CLIENT ADVISORY: MULTIPLE VENDOR BLUETOOTH MEMORY STACK CORRUPTION VULNERABILITY",
        "trust": 0.6
      },
      {
        "db": "BUGTRAQ",
        "id": "20061012 SECUREWORKS RESEARCH CLIENT ADVISORY: MULTIPLE VENDOR BLUETOOTH MEMORY STACK CORRUPTION VULNERABILITY",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "87177",
        "trust": 0.4
      },
      {
        "db": "VULHUB",
        "id": "VHN-21513",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "50988",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "PACKETSTORM",
        "id": "50988"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "id": "VAR-200610-0239",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T12:46:58.201000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Bluetooth",
        "trust": 0.8,
        "url": "http://aps.toshiba-tro.de/bluetooth/"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.1,
        "url": "http://www.secureworks.com/press/20061011-dell.html"
      },
      {
        "trust": 2.0,
        "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
      },
      {
        "trust": 2.0,
        "url": "http://securitytracker.com/id?1017075"
      },
      {
        "trust": 2.0,
        "url": "http://securityreason.com/securityalert/1744"
      },
      {
        "trust": 2.0,
        "url": "http://attrition.org/pipermail/vim/2006-october/001085.html"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/22402"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2006/4057"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
      },
      {
        "trust": 0.9,
        "url": "http://www.securityfocus.com/archive/1/archive/1/448422/100/100/threaded"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5405"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-5405"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2006/4057"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/29503"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/6807/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/6806/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/22402/"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "PACKETSTORM",
        "id": "50988"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "db": "PACKETSTORM",
        "id": "50988"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2006-10-19T00:00:00",
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "date": "2006-10-18T00:00:00",
        "db": "BID",
        "id": "87177"
      },
      {
        "date": "2012-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "date": "2006-10-17T17:58:16",
        "db": "PACKETSTORM",
        "id": "50988"
      },
      {
        "date": "2006-10-19T01:07:00",
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "date": "2006-10-18T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-10-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-21513"
      },
      {
        "date": "2006-10-18T00:00:00",
        "db": "BID",
        "id": "87177"
      },
      {
        "date": "2012-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      },
      {
        "date": "2018-10-17T21:42:46.330000",
        "db": "NVD",
        "id": "CVE-2006-5405"
      },
      {
        "date": "2006-10-19T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "BID",
        "id": "87177"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ],
    "trust": 0.9
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Used for multiple products  Toshiba Bluetooth Service disruption in wireless device drivers  (DoS) Vulnerabilities",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003320"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "unknown",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200610-323"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2006-5405

Vulnerability from fkie_nvd - Published: 2006-10-19 01:07 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://attrition.org/pipermail/vim/2006-October/001085.html
cve@mitre.org	http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html
cve@mitre.org	http://secunia.com/advisories/22402	Vendor Advisory
cve@mitre.org	http://securityreason.com/securityalert/1744
cve@mitre.org	http://securitytracker.com/id?1017075
cve@mitre.org	http://www.secureworks.com/press/20061011-dell.html
cve@mitre.org	http://www.securityfocus.com/archive/1/448422/100/100/threaded
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4057
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/29503
af854a3a-2127-422b-91ae-364da2661108	http://attrition.org/pipermail/vim/2006-October/001085.html
af854a3a-2127-422b-91ae-364da2661108	http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22402	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securityreason.com/securityalert/1744
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017075
af854a3a-2127-422b-91ae-364da2661108	http://www.secureworks.com/press/20061011-dell.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/448422/100/100/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4057
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/29503

Impacted products

	Vendor	Product	Version
	toshiba	bluetooth_wireless_device_driver	3.x
	toshiba	bluetooth_wireless_device_driver	4.x

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:3.x:*:*:*:*:*:*:*",
              "matchCriteriaId": "44D096D3-9FDA-49B9-A5B9-D83CE2F6FD7B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:toshiba:bluetooth_wireless_device_driver:4.x:*:*:*:*:*:*:*",
              "matchCriteriaId": "E8F95EE1-2AAB-4185-9F75-53A87C01B425",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el driver del dispositivo de wireless del Toshiba Bluetooth para las versiones 3.x y 4, hasta la 4.00.35, como el usado en m\u00faltiples productos, permite a los atacantes, f\u00edsicamente pr\u00f3ximos causar la denegaci\u00f3n de servicio (ca\u00edda), corrupci\u00f3n de la memoria y la posibilidad de ejecutar c\u00f3digo de su elecci\u00f3n mediante paquetes Bluetooth artesanales."
    }
  ],
  "id": "CVE-2006-5405",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "HIGH",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 1.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-10-19T01:07:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22402"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/1744"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1017075"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.secureworks.com/press/20061011-dell.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4057"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22402"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/1744"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1017075"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.secureworks.com/press/20061011-dell.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4057"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-6634-59Q3-7QPG

Vulnerability from github – Published: 2022-05-01 07:28 – Updated: 2022-05-01 07:28

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-5405"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-10-19T01:07:00Z",
    "severity": "MODERATE"
  },
  "details": "Unspecified vulnerability in Toshiba Bluetooth wireless device driver 3.x and 4 through 4.00.35, as used in multiple products, allows physically proximate attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via crafted Bluetooth packets.",
  "id": "GHSA-6634-59q3-7qpg",
  "modified": "2022-05-01T07:28:00Z",
  "published": "2022-05-01T07:28:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5405"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29503"
    },
    {
      "type": "WEB",
      "url": "http://attrition.org/pipermail/vim/2006-October/001085.html"
    },
    {
      "type": "WEB",
      "url": "http://briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22402"
    },
    {
      "type": "WEB",
      "url": "http://securityreason.com/securityalert/1744"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017075"
    },
    {
      "type": "WEB",
      "url": "http://www.secureworks.com/press/20061011-dell.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/448422/100/100/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4057"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-5405 (GCVE-0-2006-5405)

GSD-2006-5405

VAR-200610-0239

FKIE_CVE-2006-5405

GHSA-6634-59Q3-7QPG

Tags

Sightings

Nomenclature