5:38 PM
Hemanth Joseph
Pebble Dos Vulnerability
Hemanth Joseph
hemanthvjoseph@gmail.com
During my recent security research
on Pebble Smart watch and its Android/iOS application, I found one critical Dos
vulnerability by which we can delete all data’s, apps, notes, and other
information stored in it remotely .
About Pebble Smart Watches !
Pebble smartwatch is developed by
Pebble Technology Corporation and is released in 2013 . It is considered as one
of the BEST Smart Watch available out there and is compatible with Android and
iOS . Over 10 lack units of Pebble sold as of July 2014 .
Pebble Dos Vulnerability !!! [POC]
Pebble Smartwatch when
connected to a Phone will give a Vibrating alert to Calls, Messages, E-mails,
etc .. . I’m testing a Pebble with its latest v2.4.1 Firmware .
For every messages from
Whatsapp or Facebook Messenger or such apps
Pebble will give an alert with the whole message displayed on its screen
. There is no character limit in showing such messages. Even if we get a
lengthy 100 word message from whatsapp with an alert Pebble will show the whole
message in its small screen . From this itself it is clear that we can make it
freeze by giving it a lot of notifications to display . But what actually
happened during my testing shows how serious this Bug is .
What I Did Is ......
1. Connected my Pebble Smart Watch with my Sony Z2.
2. Tested if I am getting notification or not.
3. Did a message bombing to my own Whatsaap Account [1500
messages in 5 sec ]
What All Ended Up With?
As expected the whole screen of my Pebble
became filled with lines ( As shown in the Picture ) .
Soon itself it got Switched Off automatically and executed a Factory
Reset without any actions from my side to do so ! . Due to that automatic
Factory Reset I lost all my Apps and other data’s which I was having in my
Pebble .
The same occurred even when I
decreased the no. of messages to 300 in 5 sec .
By exploiting this Dos bug a
person with your FB ID or Mobile Number or any such thing can
remotely DELETE all your data’s in your Pebble by simply giving you a
Small Message Bomb .
Possible Fix
·
Give a Character
limit while showing such messages in Pebble .
·
Remove the
Automatic Factory Reset Bug .
**UPDATE**
After the freezing of your Pebble you will
see a lot of white straight lines all over the screen. We can’t make it back to
a working condition by simply Switching it off
we MUST do a Factory Reset in order to make it working again . So it is
sure that all your data will be Deleted if your pebble gets a DoS !
Thank You For Reading .
Get Me On :
9 comments:
•★COMPOSITE HACKS ★•
Are You Seeking For A LEGIT PROFESSIONAL HACKER Who Will Get Your Job Done Efficiently With Swift Response?? CONGRATULATIONS, Your Search Ends Right Here.
★ WHO ARE COMPOSITE HACKS ???
• We are a Team Of Professional HACKERS , a product of the coming together of Legit Hackers from the Dark-Web (pentaguard, CyberBerkut, White Hack and Black Hat,) we have been existing for over years, our system is a very strong and decentralized command structure that operates on ideas and directives.
★ JOB GUARANTEE:
Whenever We Are been hired as a Team Hackers We typically only take jobs that We find somehow original, challenging, or especially helpful to the community. We’ve never wanted to sit around defending some video game company’s source code from network intruders – We prefer to help nonprofits, private investigators, Private Individuals, government contractors, and other traditionally underserved populations.
And We’d rather match skills against the best in the field of state-sponsored hackers engaged in economic espionage than put some kid in prison for pranking the phone company. When a company tries to hire Us, the first question I ask is: “Who is this going to help?”
I know COMPOSITE HACKS is Well known for LEGIT HACKING SERVICES, but i always try to avoid people thinking We’r proud or making Many individual think its only the big companies that can hire Us, fine, here is Our mail: “””compositehacks@cyberservices.com””” You Can Reach Out To Us for Your Desired HACKING Services Ranging from:
* Penetration Testing
* Jail Breaking
* PHONE HACKING (Which gives you Unnoticeable Access to Everything that is Happening on the phone such as call logs, messages, chats and all social media Apps .
* Retrieval Of Lost Files
* Location Tracking.
* Clearing Of Criminal Records.
* Hacking Of Server, Database And Social Media accounts e.g Facebook, twitter, Instagram Snapchat etc
★ SOME SPECIAL SERVICES WE OFFER:
* RECOVERY OF LOST FUNDS ON BINARY OPTIONS.
* Bank Accounts Loading ( Only USA Banks)
* Credit Cards Loading (Only USA CC’s)’
★Our Team houses a separate group of specialists who are productively focussed and established authorities in different platforms. They hail from a proven track record Called “HackerOne” and have cracked even the toughest of barriers to intrude and capture or recapture all relevant data needed by our Clients. Some Of These Specialist Includes PETER YAWORSKI, FRANS ROSEN, JACK CABLE, JOBERT ABMA, ARNE SWINNEN And More
★COMPOSITE HACKS is available for customer care 24/7, all day and night. We understand that your request might be urgent, so we have a separate team of allocated hackers who interact with our Clients round the clock. You are with the right people so just get started.
★CONTACT:
* Email:
compositehacks@cyberservices.com
compositehacks@gmail.com
* Wickr: compositehacks
★CONTACT US AND GET YOUR PROBLEMS SOLVED IN THE TWINKLING OF AN EYE
★
compfixer@list.ru is a huge scammer and will take your money
GET THE BEST HACKING SERVICES‼️
The issue of SCAM is rampant today in the internet. People no longer trust adverts they see in sites especially in comments.
But
COPE TECHS is an organization that you can trust when it comes to HACKING SERVICES. Our Hacking Services is to help individuals and not for theft purposes.
Here is a list of HACKING SERVICES we can offer to you-:
▪️Giving Financial support 💵💶through our Bitcoin Mining ⛏ ⚒process and funding it to a paypal account if need be.
▪️Phone 📲 & Computer💻 Hacks
▪️Email 📧 & Social Media Account💝 Hacks
▪️Changing of Grades🗞& Credit Score💰
▪️Detection of weakness and upgrade of FireWall and lots more.
Our Hacks are Suberb and always ready to hack for you, any day, anytime.
If you ever need help or Hacking Services, please contact us trough our Secure line. Our services to you will be Concealed and for no reason be revealed to others. You have our word on that.
Calls, voicemails and text are all accepted.
Contact-: +1(808) 600 0773
Email-: copetechs@gmail.com
I'm writing to inform the world that KING ZEUS has the skills to repair bad credit score. Within a week, 14 collection accounts on my report were removed! This was magical, to crown it all, my student loans were disputed and removed too. All it took me was a detailed phone conversation with him on 4 0 7 9 0 0 6 2 9 9. I explained all my problems to him and he told me not to worry. He didn't charge too much and a deposit token was all he took to do my job, I'm gladly paying his balance today as well as give him a tip. He's the real deal.
Haven't you heard about cyber hacking company blank ATM card and how other people had benefited from it? I am Williams vivian by name, i want to share a blog and forums on how to get real blank ATM card,thank to cyber hacking company who helped me with an already hacked ATM CARD and i was so poor without funds that i got frustrated. One morning as i was browsing on the internet, i saw different comments of people testifying of how cyber hacking company helped him from being poor to a rich man through this already hacked ATM CARD. I was skeptical if this was true, i decided to contact him to know if he is real he proved to me beyond all doubts that its was really for real so i urgently receive my blank ATM card. Contact his email cyberhackingcompany@gmail.com and today am also testifying on how cyber hacking company helped me. I never believed in it until the card was sent to me, which am using today Contact the company now and become rich. Email: cyberhackingcompany@gmail.com ....
Need The To Hire A Hacker❓ Then contact PYTHONAX✅
The really amazing deal about contacting PYTHONAX is that the Hack done by us can’t get traced to you, as every Hacking job we do is strongly protected by our Firewall. It’s like saying if anyone tries to trace the Hack, it will lead them to us and we block whatever actions they are doing.
We have been Invisible to Authorities for almost a decade now and if you google PYTHONAX, not really about us comes out, you can only see comments made by us or about us.
Another Amazing thing to you benefit from Hiring our Hackers is that you get a Legit and the best Hacking service, As we provide you with Professional Hackers who have their Hacking Areas of specialization.
We perform every Hack there is, using special Hacking tools we get from the dark web.
Some list of Hacking Services we provide are-:
▪️Phone Hacking & Cloning ✅
▪️Computer Hacking ✅
▪️Emails & Social Media Account Hacking✅
▪️Recovering Deleted Files✅
▪️Tracking & Finding People ✅
▪️Hunting Down Scammers✅
▪️Hack detecting ✅
▪️Stealing/Copying Files & Documents From Restricted Networks and Servers ✅
▪️Bitcoin Multiplication✅
▪️Binary Option Money Recovery ✅
▪️Forex Trading Money Recovery✅
▪️IQ Option Money Recovery✅
And lots more......
Whatever Hacking service you require, just give us an Email to the Emails Address provided below.
pythonaxhacks@gmail.com
pythonaxservices@gmail.com
PYTHONAX.
2020 © All Right Reserved.
Selling good and fresh cvv fullz
track 1 and 2 with pin
bank login
bank transfer
writing cheques
transfer to cc ...
Sell Fresh CVV - Western Union Transfer - Bank Login - Card Dumps - Paypal - Ship
Fresh Cards, Selling Dumps, Cvvs, Fullz
Tickets,Hotels,Credit card topup...Paypal transfer, Mailer,Smtp,western union login,
Book Flight Online
SELL CVV GOOD And HACK BIG CVV GOOD Credit Card
Fresh Cards. Selling Dumps, Cvvs, Fullz.Tickets,Hotels,Credit cards
Sell Cvv(cc) - Wu Transfer - Card Dumps - Bank login/paypal
And many more other hacking services
contact me : hackerw169@gmail.com
ICQ: 699 396 818
- I have account paypal with good balance
- I hope u good customers and will be long-term cooperation
Prices Western Union Online Transfer
-Transfer(Eu,Uk,Asia,Canada,Us,France,Germany,Italy and very
easy to do African)
- 200$ = 1500$ (MTCN and sender name + country sender)
- 350$ = 4000$ (MTCN and sender name + country sender)
- 500$ = 6000$ (MTCN and sender name + country sender)
- 600$ = 8000$ (MTCN and sender name + country sender)
Then i will do transfer's for you, After about 30 mins you'll have
MTCN and sender name + country sender
- Dumps prices
- Tracks 1&2 US = 85$ per 1
- Tracks 1&2 UK = 100$ per 1
- Tracks 1&2 CA / AU = 110$ per 1
- Tracks 1&2 EU = 120$ per 1
Bank Logins Prices US UK CA AU EU
- Bank Us : ( HALIFAX,BOA,CHASE,Wells Fargo...)
. Balance 5000$ = 250$
. Balance 8000$ = 400$
. Balance 12000$ = 600$
. Balance 15000$ = 800$
. Balance 20000$ = 1000$
- Bank UK : ( LLOYDS TSB,BARCLAYS,Standard Chartered,HSBC...)
. Balance 5000 GBP = 300 GBP
. Balance 12000 GBP = 600 GBP
. Balance 16000 GBP = 700 GBP
. Balance 20000 GBP = 1000 GBP
. Balance 30000 GBP = 1200 GBP
contact me : hackerw169@gmail.com
ICQ: 699 396 818
Do you need Finance?
Are you looking for Finance?
Are you looking for a money to enlarge your business?
We help individuals and companies to obtain loan for business expanding and to setup a new business ranging any amount. Get a loan at affordable interest rate of 3%, Do you need this cash/loan for business and to clear your bills? Then send us an email now for more information contact us now via Email: inforamzanloan@gmail.com
I urgently needed a home loan but could not qualify for one due to my poor credit, I had a very low FICO and I had some inquiries, late payments and repos on my credit report, I really needed to fix my credit so I could get a home for my family. I confided in a friend and he was kind enough to introduce me to LANX CREDIT SOLUTION, they were able to fix my credit and add some positive trade lines to my credit, with a clean credit and a FICO of 782. Writing this review because I just got the loan I’ve been looking for. You can get through to them via
PHONE: (310) 879 2541
Email: LANXCREDITSOLUTION@GMAIL.COM
Thank you for your time.
Post a Comment