New Proof of Concept tool demos BrakTooth vulnerability exploits

New Proof of Concept tool demos BrakTooth vulnerability exploits

Security researchers have released a new Proof of Concept (PoC) tool that demonstrates BrakTooth vulnerability exploits against Bluetooth-enabled devices.

The PoC tool was published on November 1, 2021, over two months after the discovery of a family of Bluetooth vulnerabilities, dubbed BrakTooth.

Researchers had previously discovered the BrakTooth vulnerabilities in Bluetooth stacks that can “range from denial of service (DoS) via firmware crashes and deadlocks in commodity hardware to arbitrary code execution (ACE) in certain IoTs.” They further warned the issues affected nearly 1,400 products.

Moreover, the researchers evaluated vendor devices from Qualcomm, Intel, Texas Instruments, Zhuhai Jieli Technology, Cypress, Bluetrum Technology, Espressif Systems, Harman International, and Silabs.

The BrakTooth PoC tool was published on GitHub and included detailed usage instructions for discovering BrakTooth exploits by scanning targets and launching an attack against a vulnerable endpoint.

The PoC also includes a standalone version of Wireshark that has a plugin to read the customized captures saved by the tool.

Related Articles