SecurityFocus

Serious flaws in bluetooth security lead to disclosure of personal data Nov 11 2003 10:53PM
Adam Laurie (adam algroup co uk) (1 replies)

Re: Serious flaws in bluetooth security lead to disclosure of personal data Nov 13 2003 10:11PM
Pentest Security Advisories (alerts pentest co uk) (3 replies)

Re: Serious flaws in bluetooth security lead to disclosure of personal data Nov 14 2003 12:40PM
Adam Laurie (adam algroup co uk)

Re: [Full-Disclosure] Re: Serious flaws in bluetooth security lead to disclosure of personal data Nov 14 2003 06:16AM
Jordan Wiens (jwiens nersp nerdc ufl edu) (1 replies)

Re: [Full-Disclosure] Re: Serious flaws in bluetooth security lead to disclosure of personal data Nov 14 2003 10:21AM
Pentest Security Advisories (alerts pentest co uk) (1 replies)

Jordan Wiens wrote:

>
> <SNIP>
>
>>The ultimate fix is for manufacturers to provide a greater separation of
>>services, an attitude that seems to have been taken with the Ericsson T610.
>
>
> I'm a bit confused; if I read it right, the first report specifically
> mentioned this as a vulnerable device, now it's listed as one that got it
> right? Did I misread?

No, you didn't misread - The T610, whilst still vulnerable to some
attacks, does provide more protection
of OBEX profiles. In this respect, it's better than the other phones /
devices we've tested.

On the particular T610 that was tested, we found that whilst it was
possible to upload files to the phone we could not download files from it.

[ reply ]

Re: [Full-Disclosure] Re: Serious flaws in bluetooth security leadto disclosure of personal data Nov 14 2003 04:05PM
nosp (nosp xades com)

Re: Serious flaws in bluetooth security lead to disclosure of personal data Nov 13 2003 11:31PM
Andreas Steinmetz (ast domdv de)