Mika Tuupola

According to KEITAI-L mailinglist Oracle employees have been warned about bluetooth security.

... If a hacker is within range (just a few meters) of a Bluetooth enabled device, the attack could result in the phone resetting or terminating the current operation. In the worst case, a hacker could use your phone to send SMS (Short Message Service), and use your browser to access the Internet. The connection fees are charged to your phone bill, since the connection was made via your phone.

No “device pairing,” such as a remote headset, is required from one Bluetooth device to another Bluetooth device. Therefore, anyone in range of the phone could initiate an attack. (Device Pairing refers to the initial authentication of two Bluetooth devices such as a cellular phone and a remote headset.)...