Recent searches
Search options
Administered by:
@sjb@mstdn.iowww.bleepingcomputer.comUndocumented "backdoor" found in Bluetooth chip used by a billion devicesThe ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented "backdoor" that could be leveraged for attacks.
@sjb AFAIU it requires already having root on the chip, so it's not really a backdoor
@wolf480pl @sjb It doesn't strictly require already having root on the device - if the bluetooth implementation generates bluetooth commands in some way, that would allow for easy remote exploitation (if an attacker can get the bluetooth library to generate the backdoor opcodes, the attacker can trivially write to memory or flash and get persistent exploitation).
@Suiseiseki @sjb by remote you mean wirelessly over bluetooth?
@Suiseiseki @sjb AFAIK the bluetooth implementation comes bundled with the sdk for that chip, and people writing software that runs on ESP32 typically use it unmodified. Have the researchers found code in the bundled bluetooth implementation that would allow the attacker to trigger execution of those opcodes, and control their arguments?