Vulnerability Description
Buffer overflow in the Bluetooth OBEX Object Push service in "Blue Neighbors.EXE" in AmbiCom Blue Neighbors 2.50 Build 2500 and earlier allows remote attackers to execute arbitrary code via a long file name, as demonstrated via a long RFILE argument to ussp-push.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ambicom | Blue Neighbors | 2.50_build_2500 |
References
- http://secunia.com/advisories/18466Vendor Advisory
- http://securityreason.com/securityalert/366
- http://www.digitalmunition.com/DMA%5B2006-0115a%5D.txtExploit
- http://www.securityfocus.com/archive/1/422481/100/0/threaded
- http://www.securityfocus.com/bid/16258
- http://www.vupen.com/english/advisories/2006/0219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24179
- http://secunia.com/advisories/18466Vendor Advisory
- http://securityreason.com/securityalert/366
- http://www.digitalmunition.com/DMA%5B2006-0115a%5D.txtExploit
- http://www.securityfocus.com/archive/1/422481/100/0/threaded
- http://www.securityfocus.com/bid/16258
- http://www.vupen.com/english/advisories/2006/0219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24179
FAQ
What is CVE-2006-0253?
CVE-2006-0253 is a vulnerability with a CVSS score of 5.1 (MEDIUM). Buffer overflow in the Bluetooth OBEX Object Push service in "Blue Neighbors.EXE" in AmbiCom Blue Neighbors 2.50 Build 2500 and earlier allows remote attackers to execute arbitrary code via a long fil...
How severe is CVE-2006-0253?
CVE-2006-0253 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0253?
Check the references section above for vendor advisories and patch information. Affected products include: Ambicom Blue Neighbors.