CVE-2010-0222 Information
Description
Kingston DataTraveler BlackBox (DTBB) DataTraveler Secure Privacy Edition (DTSP) and DataTraveler Elite Privacy Edition (DTEP) USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents which makes it easier for physically proximate attackers to read or modify data by determining and providing this key.
Reference
http://blogs.zdnet.com/hardware/?p=6655 http://it.slashdot.org/story/10/01/05/1734242/ http://news.zdnet.co.uk/security/010000001893996332700.htm http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html http://www.kingston.com/driveupdate/ http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9 http://www.vupen.com/english/advisories/2010/0080 https://www.ironkey.com/usb-flash-drive-flaw-exposed
Share on: