Unrated severityNVD Advisory· Published Jun 22, 2006· Updated Jun 16, 2026
CVE-2006-3146
CVE-2006-3146
Description
The TOSRFBD.SYS driver for Toshiba Bluetooth Stack 4.00.29 and earlier on Windows allows remote attackers to cause a denial of service (reboot) via a L2CAP echo request that triggers an out-of-bounds memory access, similar to "Ping o' Death" and as demonstrated by BlueSmack. NOTE: this issue was originally reported for 4.00.23.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:toshiba:bluetooth_stack:*:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:toshiba:bluetooth_stack:*:*:*:*:*:*:*:*range: <=4.00.29
- cpe:2.3:a:toshiba:bluetooth_stack:3.00.11:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.00.12:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.00.31a:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.00.32:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.01.03:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.10.00:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.20.00:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.20.01:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.20.02:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:3.20.04:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:4.00.01t:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:4.00.11:*:*:*:*:*:*:*
- cpe:2.3:a:toshiba:bluetooth_stack:4.00.23:*:*:*:*:*:*:*
- (no CPE)range: <=4.00.29
Patches
Vulnerability mechanics
References
12- secunia.com/advisories/20657nvdPatchVendor Advisory
- www.securityfocus.com/bid/18527nvdExploit
- trifinite.org/trifinite_advisory_toshiba.htmlnvdVendor Advisory
- www.vupen.com/english/advisories/2006/2455nvdVendor Advisory
- aps.toshiba-tro.de/bluetooth/pages/driverinfo.phpnvd
- attrition.org/pipermail/vim/2006-October/001085.htmlnvd
- briankrebswatch.blogspot.com/2006/10/more-on-toshiba-patches.htmlnvd
- securitytracker.com/idnvd
- trifinite.org/blog/archives/2006/06/update_tosiba_a.htmlnvd
- www.osvdb.org/26686nvd
- www.securityfocus.com/archive/1/437811/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27228nvd
News mentions
0No linked articles in our index yet.