CVE-2005-2547

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/08/2005
Last modified:
03/04/2025

Description

security.c in hcid for BlueZ 2.16, 2.17, and 2.18 allows remote attackers to execute arbitrary commands via shell metacharacters in the Bluetooth device name when invoking the PIN helper.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:bluez_project:bluez:2.18:*:*:*:*:*:*:*