CVE-1999-1100

Published: Dec 31, 1999Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configuration file, which reduces the effective key length of the DES key to 48 bits instead of 56 bits, which makes it easier for an attacker to find the proper key via a brute force attack.

Affected (1)

Products: Cisco: Pix Private Link

1 product

Pix Private Link

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Pix Private Link	Up to 4.1\(6\)

References (6)

http://ciac.llnl.gov/ciac/bulletins/i-056.shtml

Source: cve@mitre.org

http://www.cisco.com/warp/public/770/pixkey-pub.shtml

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/1579

Source: cve@mitre.org

http://ciac.llnl.gov/ciac/bulletins/i-056.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cisco.com/warp/public/770/pixkey-pub.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/1579

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.