VDB
CVE-2017-1000250
CVE-2017-1000250
PUBLISHED
All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests.
EPSS 34.86% · 97.1th percentile
Risk Scores
EPSS Score
34.86%
97.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | bluez | 0, 5.36-0ubuntu1, 5.37-0ubuntu5 |
| Ubuntu:14.04:LTS | bluez | 4.101-0ubuntu10, 0, 4.101-0ubuntu8b1 |
Exploit Intelligence
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc-repo)
- https://www.armis.com/blueborne (nist-nvd)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc)
- Proof of concept exploit script for CVE-2017-1000250. Written while researching for the essay in TTM4137 Wireless Security. (github-poc)
…and 2 more exploits
Timeline
- Sep 12, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
- Nov 17, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-1000250 third-party-advisory
- https://www.armis.com/blueborne third-party-advisory
- https://ubuntu.com/security/notices/USN-3413-1 vendor-advisory
- https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BlueBorne third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-1000250 third-party-advisory