{"vuid":"VU#258390","idnumber":"258390","name":"Apple Mac OS X with Bluetooth enabled may allow file exchange without prompting users","keywords":["Apple","Mac OS X","Bluetooth","apple_security_update_2005_005"],"overview":"Apple Mac OS X with Bluetooth support may unintentionally allow files to be exchanged with other systems by default.","clean_desc":"Mac OS X includes support for the Bluetooth networking protocol suite. Bluetooth is a communication technology that enables short-range communication between devices. The default Bluetooth settings in OS X may allow files to be exchanged with other devices unknowingly. The default location for files that are exchanged may also be used by other applications, resulting in unintended information disclosure.","impact":"Remote attackers may be able to exchange files with a Bluetooth-enabled system running Mac OS X, resulting in unintended information disclosure.","resolution":"Apply An Update Apple has addressed the issue in Security Update 2005-005.","workarounds":"As a workaround, users can manually disable the Bluetooth file sharing service or change the default location used for file transfers.","sysaffected":"","thanks":"Thanks to Apple Product Security for reporting this vulnerability, who in turn \ncredit \nKevin Finisterre\n with reporting the issue.","author":"This document was written by Ken MacInnis.","public":["http://docs.info.apple.com/article.html?artnum=301528","http://secunia.com/advisories/15227/","http://www.digitalmunition.com/DMA%5B2005-0502a%5D.txt"],"cveids":["CVE-2005-1332"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2005-05-04T17:48:41Z","publicdate":"2005-05-03T00:00:00Z","datefirstpublished":"2005-05-09T16:43:52Z","dateupdated":"2005-05-16T16:13:36Z","revision":7,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"15","cam_impact":"4","cam_easeofexploitation":"10","cam_attackeraccessrequired":"9","cam_scorecurrent":"2.025","cam_scorecurrentwidelyknown":"2.53125","cam_scorecurrentwidelyknownexploited":"4.55625","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":2.025,"vulnote":null}