5
CVE-2006-3146
- EPSS 5.23%
- Veröffentlicht 22.06.2006 22:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe TOSRFBD.SYS driver for Toshiba Bluetooth Stack 4.00.29 and earlier on Windows allows remote attackers to cause a denial of service (reboot) via a L2CAP echo request that triggers an out-of-bounds memory access, similar to "Ping o' Death" and as demonstrated by BlueSmack. NOTE: this issue was originally reported for 4.00.23.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Toshiba ≫ Bluetooth Stack Version <= 4.00.29
Toshiba ≫ Bluetooth Stack Version3.00.11
Toshiba ≫ Bluetooth Stack Version3.00.12
Toshiba ≫ Bluetooth Stack Version3.00.31a
Toshiba ≫ Bluetooth Stack Version3.00.32
Toshiba ≫ Bluetooth Stack Version3.01.03
Toshiba ≫ Bluetooth Stack Version3.10.00
Toshiba ≫ Bluetooth Stack Version3.20.00
Toshiba ≫ Bluetooth Stack Version3.20.01
Toshiba ≫ Bluetooth Stack Version3.20.02
Toshiba ≫ Bluetooth Stack Version3.20.04
Toshiba ≫ Bluetooth Stack Version4.00.01t
Toshiba ≫ Bluetooth Stack Version4.00.11
Toshiba ≫ Bluetooth Stack Version4.00.23
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.23% | 0.896 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.