CAPEC-666

Standard Abstraction Level
Meta — Very abstract, high-level category
Standard — Specific enough to understand
Detailed — Tied to specific technique
Draft MITRE CAPEC Status
Stable — Fully reviewed and complete
Draft — Under development
Incomplete — Partially defined
Deprecated — No longer recommended
Obsolete — Replaced by another CAPEC
Likelihood: Medium Severity: Medium
BlueSmacking

Description

An adversary uses Bluetooth flooding to transfer large packets to Bluetooth enabled devices over the L2CAP protocol with the goal of creating a DoS. This attack must be carried out within close proximity to a Bluetooth enabled device.

Prerequisites

The system/application has Bluetooth enabled.

Mitigations

Disable Bluetooth when not being used.

When using Bluetooth, set it to hidden or non-discoverable mode.

Skills Required

[Low] An adversary only needs a Linux machine along with a Bluetooth adapter, which is extremely common.