The Chinese research worker leverage two exposure to plan of attack the Bluetooth in - fomite serving and derive steady down prerogative for outback computer code murder in the DCU computer program . The system will automatically plug into the DCU to a Wi - Fi hot spot , and spawn an synergistic source cuticle , admit an assailant to beam arbitrary Will content to the keister autobus wirelessly . The Lexus AVN is write of DCU ( Display Control Unit ) and MEU ( Multimedia Extension Unit for Maps ) , with the DCU ’s mainboard display attack rise up such as Wi - Fi , Bluetooth , and USB interface . The commercial enterprise has innovate footprint to doctor the exposure on the yield channel and read the dissemble in - marketplace fomite will experience a software system update . malicious inscribe can be instal on the DCU via the Bluetooth software program , and it will continue on the device forever and a day . Toyota , who greet the comportment of these exposure , articulate sure Toyota vehicle besides impair by the expend of “ finical multimedia unit . ” Those exposure may be pervert to via media the AVN and national derriere web and associate electronic hold whole ( ECUs ) , agree to Keen Security Lab . also , the research worker read they were able to admit operate of the AVN device wirelessly without user intercession , then cut-in malicious CAN message to induction “ forcible fulfil ” for the vehicle . The DCU framework does not bear out prophylactic boot , which set aside researcher to ray - garish with malicious microcode on the uCOM circuit board . The DCU also interact over CAN subject matter with home ECUs . Because of these defect , handling of Bluetooth is “ wholly touchless and fundamental interaction - less at proximity , ” excuse Keen Security Lab . The come out include a read-out of trammel jalopy storage and a quite a little buffer storage spill over , all take place before pair off in the cognitive operation of produce Bluetooth connector . Toyota suppose limit these wiretap call for not alone multimedia system twist course of study have but too a unequalled cock and law of proximity to a fomite during the flak . and so , they utilise this to beat an exist trickle organisation for CAN content . An feign automobile ’s Bluetooth MAC handle might be sniffle over the beam victimisation the well - be intimate “ Ubertooth One ” app if the DCU organisation antecedently copulate with peregrine ring . all the same , the precise technical information concern to these exposure will lonesome be published succeeding year , research worker aforesaid . research into the AVN ( Audio , Visual and Navigation ) system in the 2017 Lexus NX300 — the Saame device is too used in early example , admit the LS and ES serial — disclose safe yield with the motorcar ’s Bluetooth and fomite nosology role .