Bluetooth Bugs Open Billions of Devices to DoS, Code Execution

2021-09-02 18:32

Researchers have disclosed a group of 16 different vulnerabilities collectively dubbed BrakTooth, which impact billions of devices that rely on Bluetooth Classic for communication.

Potentially, billions of devices could be affected worldwide, researchers said.

The researchers uncovered three main attack scenarios for the bugs, the most severe of which results in ACE on internet-of-things devices.

One of the DoS bugs exists because of a failure in the SoC to free resources upon receiving an invalid LMP timing accuracy response from a connected BT device paging, sending the malformed packet, and disconnecting without sending LMP detach," researchers wrote.

Another DoS bug affects only devices using the Intel AX200 SoC. It's triggered when an oversized LMP timing accuracy request is sent to an AX200 slave.

Successful exploits can "freeze" devices, requiring the user to manually turn on unresponsive devices afterwards.

News URL

https://threatpost.com/bluetooth-bugs-dos-code-execution/169159/

#bluetooth #codeexecution #DOS

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Bluetooth		4	0	9	7	0	16