CVE-1999-1100
0
5
10
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Link copied!
Description
Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configuration file, which reduces the effective key length of the DES key to 48 bits instead of 56 bits, which makes it easier for an attacker to find the proper key via a brute force attack.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- a cisco pix_private_link * * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://ciac.llnl.gov/ciac/bulletins/i-056.shtml
- http://www.cisco.com/warp/public/770/pixkey-pub.shtml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1579
- http://ciac.llnl.gov/ciac/bulletins/i-056.shtml
- http://www.cisco.com/warp/public/770/pixkey-pub.shtml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1579