CVE-2006-0253

Name of the Vulnerable Software and Affected Versions AmbiCom Blue Neighbors versions 2.50 Build 2500 and earlier

Description The issue is related to a buffer overflow in the Bluetooth OBEX Object Push service. This occurs in the "Blue Neighbors.EXE" component and can be triggered by remote attackers sending a long file name. Specifically, the vulnerability can be exploited via a long RFILE argument to ussp-push, allowing attackers to execute arbitrary code.

Recommendations For AmbiCom Blue Neighbors versions 2.50 Build 2500 and earlier, consider disabling the Bluetooth OBEX Object Push service until a patch is available to prevent remote attackers from executing arbitrary code via a long file name. Restrict access to the ussp-push service to minimize the risk of exploitation. Avoid using long file names in the RFILE argument to prevent triggering the buffer overflow.