CVE-1999-1100

HIGH7.5/ 10.0
Share:
Published: December 31, 1999 at 05:00 AM
Modified: April 3, 2025 at 01:03 AM
Source: cve@mitre.org

Vulnerability Description

Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configuration file, which reduces the effective key length of the DES key to 48 bits instead of 56 bits, which makes it easier for an attacker to find the proper key via a brute force attack.

CVSS Metrics

Base Score
7.5
Severity
HIGH
Vector String
AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses (CWE)

NVD-CWE-Other
Source: nvd@nist.gov

References & Intelligence

http://ciac.llnl.gov/ciac/bulletins/i-056.shtml
Source: cve@mitre.org
http://www.cisco.com/warp/public/770/pixkey-pub.shtml
Source: cve@mitre.org
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/1579
Source: cve@mitre.org
http://ciac.llnl.gov/ciac/bulletins/i-056.shtml
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.cisco.com/warp/public/770/pixkey-pub.shtml
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/1579
Source: af854a3a-2127-422b-91ae-364da2661108

Related Resources

Browse CVE Database
Search 294,000+ vulnerabilities
CVEs from 1999
View all vulnerabilities this year
CWE Database
Explore weakness categories
Security Writeups
Learn from real-world examples
About 4nuxd
Cybersecurity research & tools
Homepage
Explore more security resources