BlueZ 1.x/2.x - HIDD Bluetooh HID Command Injection Vulnerability



source: http://www.securityfocus.com/bid/22076/info


BlueZ hidd is prone to a device-command-injection vulnerability.

A remote attacker can exploit this issue to gain control of mouse and keyboard HIDs (human interface device). This will allow the attacker to interact with the targeted computer in the context of the currently logged-in user.

Versions prior to 2.25 are vulnerable. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/29471.tar.gz