CVE-2005-4417
Widcomm Bluetooth for Windows <4.0.1.1500 - Info Disclosure
Title source: llmDescription
The default configuration of Widcomm Bluetooth for Windows (BTW) 4.0.1.1500 and earlier, as installed on Belkin Bluetooth Software 1.4.2 Build 10 and ANYCOM Blue USB-130-250 Software 4.0.1.1500, and possibly other devices, sets null Authentication and Authorization values, which allows remote attackers to send arbitrary audio and possibly eavesdrop using the microphone via the Hands Free Audio Gateway and Headset profile.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Kevin Finisterre · remotewindows
https://www.exploit-db.com/exploits/1357
References (1)
Core 1
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/419642/100/0/threaded
Scores
EPSS
0.0319
EPSS Percentile
87.0%
Details
Status
published
Products (3)
anycom/blue_usb-130-250_software
4.0.1.1500
belkin/bluetooth_software
1.4.2_build_10
widcomm/bluetooth_for_windows
4.0.1.1500
Published
Dec 20, 2005
Tracked Since
Feb 18, 2026