This setting allows anyone to remotely inject audio into a victim’s PCspeakers, as well as remotely monitor audio via the microphone.
This is one of the scariest hacks I’ve seen lately. As indicated above, it allows you to record or play audio remotely on a victim’s machine! This vulnerability applies to the Widcomm Windows bluetooth drivers which do not require authentication in order to connect to the Audio Gateway.
More information, including remediation steps, can be found here.
What would people hear you saying at your desk? (I mostly curse certain vendors web browsers, occasionally burp, and say “wow, that’s cool” a lot). Now, as far as being able to play audio on a remote machine I could have so much fun with that one. Just think, the “The Italian Christmas Donkey” song playing over and over and over and over and over……
Full Advisory
.com