CVE-2006-6908 Information

Description

Buffer overflow in the Bluetooth Stack COM Server in the Widcomm Bluetooth stack as packaged as Widcomm Stack 3.x and earlier on Windows Widcomm BTStackServer 1.4.2.10 and 1.3.2.7 on Windows Widcomm Bluetooth Communication Software 1.4.1.03 on Windows and the Bluetooth implementation in Windows Mobile or Windows CE on the HP IPAQ 2215 and 5450 allows remote attackers to cause a denial of service (service crash) and possibly execute arbitrary code via unspecified vectors.

Reference

http://events.ccc.de/congress/2006-mediawiki//images/f/fb/23c3_Bluetooh_revisited.pdf http://osvdb.org/37587 http://www.securityfocus.com/archive/1/455889/100/0/threaded