CVE-2010-0224

Name of the Vulnerable Software and Affected Versions SanDisk Cruzer Enterprise (affected versions not specified)

Description The issue concerns the password validation mechanism of SanDisk Cruzer Enterprise USB flash drives. Instead of using device hardware for validation, the process relies on a program running on the host computer. This design flaw allows physically proximate attackers to access the cleartext drive contents by modifying the program.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.