Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2006-0212

Directory traversal vulnerability in OBEX Push services in Toshiba Bluetooth Stack 4.00.23(T) and earlier allows remote attackers to upload arbitrary files to arbitrary remote locations specified by .. (dot dot) sequences, as demonstrated by ..\ sequences in the RFILE argument of ussp-push.

  • Published: Jan 14, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-0212
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
toshiba / bluetooth_stack 3.00.11 3.00.11.x
toshiba / bluetooth_stack - 4.00.23t.x
toshiba / bluetooth_stack 3.20.00 3.20.00.x
toshiba / bluetooth_stack 3.00.12 3.00.12.x
toshiba / bluetooth_stack 4.00.01t 4.00.01t.x
toshiba / bluetooth_stack 3.20.04 3.20.04.x
toshiba / bluetooth_stack 3.20.01 3.20.01.x
toshiba / bluetooth_stack 3.00.31a 3.00.31a.x
toshiba / bluetooth_stack 3.01.03 3.01.03.x
toshiba / bluetooth_stack 3.00.32 3.00.32.x
toshiba / bluetooth_stack 4.00.11 4.00.11.x
toshiba / bluetooth_stack 3.20.02 3.20.02.x
toshiba / bluetooth_stack 3.10.00 3.10.00.x