CVE-2006-0670

Name of the Vulnerable Software and Affected Versions: hcidump version 1.29 bluez-hcidump (affected versions not specified)

Description: The issue is related to a buffer overflow in the l2cap.c file of hcidump, which can be exploited by remote attackers through a wireless Bluetooth connection using a malformed Logical Link Control and Adaptation Protocol (L2CAP) packet, leading to a denial of service (crash). Multiple vulnerabilities in the bluez-hcidump package of Debian GNU/Linux can also be exploited remotely, potentially disrupting the availability of protected information.

Recommendations: For hcidump version 1.29, update to a newer version that contains a fix for this issue. For bluez-hcidump, at the moment, there is no information about a newer version that contains a fix for this vulnerability.