Published: 13/07/2005 Updated: 05/09/2008

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote malicious users to execute arbitrary code via a long filename in an OBEX file share.

Vulnerable Product	Search on Vulmon	Subscribe to Product
nokia affix 2.1.2
nokia affix 3.0
nokia affix 3.1
nokia affix 3.2.0
nokia affix 2.0
nokia affix 2.0.1
nokia affix 2.0.2
nokia affix 2.1
nokia affix 2.1.1
nokia affix 2.3.0

Kevin Finisterre discovered two problems in the Bluetooth FTP client from affix, user space utilities for the Affix Bluetooth protocol stack The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CAN-2005-2250 A buffer overflow allows remote attackers to execute arbitrary code via a long filename in an ...

/* - Tools you will probably need: - wwwdigitalmunitioncom/setbd-affixc - KF is one bad mofo /str0ke Remote Nokia Affix btftp client exploit by kf_lists[at]secnetops[dot]com threat:~# btftp Affix version: Affix 211 Wellcome to OBEX ftp Type ? for help Mode: Bluetooth SDP: yes ftp> open 00:04:3e:65:a1:c8 Connected ftp> ls Z8 ...

NVD-CWE-Other http://www.digitalmunition.com/DMA%5B2005-0712a%5D.txt http://affix.sourceforge.net/affix_212_sec.patch http://www.securityfocus.com/bid/14230 http://www.debian.org/security/2005/dsa-762 https://nvd.nist.gov https://www.debian.org/security/./dsa-762 https://www.exploit-db.com/exploits/1081/

CVE-2005-2250

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect