Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Bluetooth demo question

  1. #1
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default Bluetooth demo question

    Hello,
    I am thinking of doing a demo of blue snarfing / blue bugging or some other bluetooth attack for my networking class project.
    I currently do not own a bluetooth phone to attack. Does anyone know what phones a most vulnerable to these types of attacks and if it is possible to get them cheaply on ebay and attack them without actvating them with phone service?

    Thanks

    ps I would be doing this demo right next to my computer so do you think I could just use a BT100 without any external antenna or anything to do this demo?


    ADMIN EDIT:
    Moved from the "How-to's & Guides" section.
    This is neither a "how-to" or a "guide" - it's a question!
    (FYI: The accepted use of the phrase "how-to" in as an intended step-by-step guide of how to do something)

  2. #2
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by Upsman View Post
    Hello,
    I am thinking of doing a demo of blue snarfing / blue bugging or some other bluetooth attack for my networking class project.
    I currently do not own a bluetooth phone to attack. Does anyone know what phones a most vulnerable to these types of attacks and if it is possible to get them cheaply on ebay and attack them without actvating them with phone service?

    Thanks

    ps I would be doing this demo right next to my computer so do you think I could just use a BT100 without any external antenna or anything to do this demo?
    Didn't you already start a thread about this?

    http://forums.remote-exploit.org/bt4...g-project.html
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  3. #3
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default no

    No my other thread was for car whisperer. I dont think I will have the resources to do that one

  4. #4
    Senior Member orange's Avatar
    Join Date
    Jan 2010
    Posts
    134

    Default

    The Nokia 6310/6310i models are good targets for the Bluebugger attack.

  5. #5
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default new one

    Quote Originally Posted by or4n9e View Post
    The Nokia 6310/6310i models are good targets for the Bluebugger attack.
    If I buy a new one will it still have this flaw or will the firmware patch this? If the flaw is fixed is in possible to downgrade the firmware?

  6. #6
    Senior Member orange's Avatar
    Join Date
    Jan 2010
    Posts
    134

    Default

    If I buy a new one will it still have this flaw or will the firmware patch this? If the flaw is fixed is in possible to downgrade the firmware?
    First of all, I doubt that Nokia ever patched the firmware properly, although this certainly is speculation. I just can tell you that I haven't seen a Nokia 6310/6310i that is not vulnerable to the Blugbugger attack yet - I mean it's a pretty old model anyway. What about buying a used one at ebay or so? If you just need it for demonstration purposes it does not need to be a brand new model. As of the firmware downgrading, I have to admit that I have no clue actually. Never dealed with this topic before - I'm sorry.

  7. #7
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default

    Quote Originally Posted by or4n9e View Post
    First of all, I doubt that Nokia ever patched the firmware properly, although this certainly is speculation. I just can tell you that I haven't seen a Nokia 6310/6310i that is not vulnerable to the Blugbugger attack yet - I mean it's a pretty old model anyway. What about buying a used one at ebay or so? If you just need it for demonstration purposes it does not need to be a brand new model. As of the firmware downgrading, I have to admit that I have no clue actually. Never dealed with this topic before - I'm sorry.

    Thanks, yeah actually ebay is the plan, but they are mostly referbs that probally have the latest firmware.
    I think i will order up one tonight and a BT100

    You ahve been a great help.

  8. #8
    Good friend of the forums williamc's Avatar
    Join Date
    Feb 2010
    Location
    Chico CA
    Posts
    285

    Default

    I did a class project on this a few years ago. Most of the Nokia 6310 phones are vulnerable. You may have some issues activating such an old phone. It would require an older SIM card. Make sure it comes with one, and that at&t will activate it for you. I did a video on the project:
    Intro To Bluesnarfing By Williamc and Twinvega (Hacking Illustrated Series InfoSec Tutorial Videos)

    William

  9. #9
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default

    great bluetooth tutorial
    That tutorial is why i actually purchased this phone and bt100.
    I tried the bluesnarfer command, but in my case the phone asks me to accept the connection, I then try and do just that and it asks for a pairing code, like a password. I tried typing 12345 in to the phone , thats the default code i thought. it then said bluetooth connection failed and it disconnects.
    I then see the following error in my konsole session.
    device name: Nokia 6310i
    bluesnarfer:tcgetattr failed, Input/output error
    bluesnarfer:bt_rfcomm_config failed
    bluesnarfer:unable to create rfcomm connection
    bluesnarfer: release rfcomm ok


    Any idea?

    also i have a newer trackphone sim card in it.... the guy unlocked it so it takes all kinds of sims, i had at&t and t mobile trac phone ones working (could make calls). However do i need somthing activated? I dident purchase the phone to actually use infact i dont even care if it makes calls, i bought it for 12 bucks just for this demo.

  10. #10
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default firmware

    pretty sure my prob is the phones firmware...

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •