[ad_1]
Experts have found an error in the code that affects the Bluetooth version and drivers of Apple's operating system, Broadcom, Intel, Qualcomm and possibly other hardware vendors. This error occurs because Bluetooth-enabled devices do not sufficiently check the encryption settings used during secure connections, reports the Bleeping Computer publication, transmitting "New Time".
Vulnerability, known as CVE-2018-5383, has been detected by scientists. from the Israeli Technological Institute Lior Neumann and Eli Biham. The problem is subject to the Bluetooth and Bluetooth LE standards.
This vulnerability allows an attacker to remotely access the encryption key and to intercept and decrypt data exchanged by gadgets or to introduce malicious messages. Attack was a successful hacking device. you must be in the wireless range of two vulnerable Bluetooth devices that were in the routing procedure.
An intruder must intercept the exchange of public keys, blocking each transmission and introducing a malicious packet in a very short period of time. If only one device is vulnerable, the attack will not succeed.
Apple, Broadcom, Intel and Qualcomm have confirmed the vulnerability of their drivers and the implementation of Bluetooth. Broadcom and Apple have already released the corresponding patches. A spokeswoman for Qualcomm told Bleeping Computer that the patch had also been fixed. Microsoft devices are not vulnerable to the vulnerability, and there is no information about repairing Intel models.
The CERT / CC experts could not determine if Android, Google devices, or the Linux kernel were affected. Representatives of Bluetooth SIG stated that they were not aware of any attacks using this vulnerability.
[ad_2]
Source link
