[32437] in bugtraq
Re: [Full-Disclosure] Re: Serious flaws in bluetooth security lead
daemon@ATHENA.MIT.EDU (Jordan Wiens)
Fri Nov 14 16:15:33 2003
Date: Fri, 14 Nov 2003 01:16:19 -0500 (EST)
From: Jordan Wiens <jwiens@nersp.nerdc.ufl.edu>
To: Pentest Security Advisories <alerts@pentest.co.uk>
Cc: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com
In-Reply-To: <3FB401AA.6010408@pentest.co.uk>
Message-ID: <Pine.LNX.4.58.0311140114130.19768@afybt.areqp.hsy.rqh>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Thu, 13 Nov 2003, Pentest Security Advisories wrote:
> A recent posting from A.L. Digital suggests that security flaws exist in
> Bluetooth, while not describing the vulnerabilities in any technical
> detail. This email concerns itself specifically with the vulnerabilities
> related to retrieval of personal information from devices.
<SNIP>
> The ultimate fix is for manufacturers to provide a greater separation of
> services, an attitude that seems to have been taken with the Ericsson T610.
I'm a bit confused; if I read it right, the first report specifically
mentioned this as a vulnerable device, now it's listed as one that got it
right? Did I misread?
--
Jordan Wiens, CISSP
UF Network Incident Response Team
(352)392-2061
