Is Linux kernel RCE vulnerability – CVE-2017-1000251 (BlueBorne vulnerability) practical?
In BlueBorne Technical White Paper, the authors mention
It should be mentioned that testing and triggering this
vulnerability was not an easy task, and required direct use
of the ACL layer to send malformed L2CAP packets. Since no
Bluetooth stack provides this to the user …
As an end user, such a vulnerability appears to be more of a theoretical concern. Is my understanding correct?