Full Disclosure mailing list archives
Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data
From: fulldisc <fulldisc () xades com>
Date: Fri, 14 Nov 2003 16:12:28 +0000
On Fri, 2003-11-14 at 10:21, Pentest Security Advisories wrote: [...]
No, you didn't misread - The T610, whilst still vulnerable to some attacks, does provide more protection of OBEX profiles. In this respect, it's better than the other phones / devices we've tested. On the particular T610 that was tested, we found that whilst it was possible to upload files to the phone we could not download files from
it. It is very possible (and easy) to download (very) sensitive files from a T610 as long as the MAC is known; no pairing necessary. This is with T610 Firmware rev R3C002 (latest). Files include calendar and phonebook. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Serious flaws in bluetooth security lead to disclosure of personal data Adam Laurie (Nov 11)
- Re: Serious flaws in bluetooth security lead to disclosure of personal data Pentest Security Advisories (Nov 13)
- Re: Serious flaws in bluetooth security lead to disclosure of personal data Andreas Steinmetz (Nov 13)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data Jordan Wiens (Nov 13)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data Pentest Security Advisories (Nov 14)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data fulldisc (Nov 14)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data nosp (Nov 14)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data Pentest Security Advisories (Nov 15)
- Re: Re: Serious flaws in bluetooth security lead to disclosure of personal data fulldisc (Nov 16)
- Re: Re: Serious flaws in bluetooth security leadto disclosure of personal data nosp (Nov 14)
- Re: Serious flaws in bluetooth security lead to disclosure of personal data Pentest Security Advisories (Nov 13)