Weak eCryptFS Key Generation Algorithm in Samsung KNOX 1.0: Exploiting TIMA Key for Sensitive Information Retrieval

Weak eCryptFS Key Generation Algorithm in Samsung KNOX 1.0: Exploiting TIMA Key for Sensitive Information Retrieval

CVE-2016-1919 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

Samsung KNOX 1.0 uses a weak eCryptFS Key generation algorithm, which makes it easier for local users to obtain sensitive information by leveraging knowledge of the TIMA key and a brute-force attack.

Learn more about our User Device Pen Test.