Vulnerabilities > CVE-2004-0838 - Unspecified vulnerability in Lexar Jumpdrive Secure

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

lexar

NVD

Published: 2004-09-13

Updated: 2017-07-11

Summary

Lexar Safe Guard for JumpDrive Secure 1.0 stores the password insecurely in memory using XOR encryption, which allows local users to read the password directly from the device and access the password protected part of the drive.

Vulnerable Configurations

Part	Description	Count
Hardware	Lexar Lexar Jumpdrive Secure *	1

References

http://secunia.com/advisories/12522
http://www.atstake.com/research/advisories/2004/a091304-1.txt
http://www.securityfocus.com/bid/11162
https://exchange.xforce.ibmcloud.com/vulnerabilities/17342