Vulnerability Details : CVE-2006-1365

The Motorola PEBL U6, the Motorola V600, and possibly the Motorola E398 and other Motorola phones allow remote attackers to add an entry for their own Bluetooth device to a target device's list of trusted devices (aka Device History), and possibly obtain AT level access to the target device, by initiating and interrupting an OBEX Push Profile that pretends to send a vCard, aka a "HeloMoto" attack.

Published 2006-03-23 23:06:00

Updated 2018-10-18 16:32:22

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2006-1365

Probability of exploitation activity in the next 30 days: 0.54%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2006-1365

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	nvd@nist.gov
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2006-1365

Products affected by CVE-2006-1365

Motorola » E398
cpe:2.3:h:motorola:e398:*:*:*:*:*:*:*:*
Matching versions
Motorola » Pebl U6 » Version: 08.83.76r
cpe:2.3:h:motorola:pebl_u6:08.83.76r:*:*:*:*:*:*:*
Matching versions
Motorola » V600
cpe:2.3:h:motorola:v600:*:*:*:*:*:*:*:*
Matching versions