CVE-2010-0225
https://notcve.org/view.php?id=CVE-2010-0225
SanDisk Cruzer Enterprise USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key. Los dispositivos flash USB SanDisk Cruzer Enterprise utilizan una solución de clave de 256-bit para obtener acceso al contenido del dispositivo en texto plano, lo que hace más fácil a atacantes físicamente próximos leer o modificar información determinando y proporcionando esta clave. • http://blogs.zdnet.com/hardware/?p=6655 http://it.slashdot.org/story/10/01/05/1734242 http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html http://www.sandisk.com/business-solutions/enterprise/technical-support/security-bulletin-december-2009 http://www.securityfocus.com/bid/37677 http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_SanDisk_USB-Stick.pdf http://www.syss.de/index.php?id=108&tx& • CWE-312: Cleartext Storage of Sensitive Information •