CVE-2011-3297

Published: Oct 6, 2011Modified: Apr 29, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.

Affected (66)

Products: Cisco: Firewall Services Module Software, Catalyst 6500, Catalyst 7600

Cisco

3 products

Firewall Services Module Software

Catalyst 6500

Catalyst 7600

Configuration A

66 vulnerable

Vulnerable Software	Affected Versions
Cisco Firewall Services Module Software	Version 3.1
Cisco Firewall Services Module Software	Version 3.1(10)
Cisco Firewall Services Module Software	Version 3.1(11)
Cisco Firewall Services Module Software	Version 3.1(12)
Cisco Firewall Services Module Software	Version 3.1(13)
Cisco Firewall Services Module Software	Version 3.1(14)
Cisco Firewall Services Module Software	Version 3.1(15)
Cisco Firewall Services Module Software	Version 3.1(16)
Cisco Firewall Services Module Software	Version 3.1(17)
Cisco Firewall Services Module Software	Version 3.1(18)
Cisco Firewall Services Module Software	Version 3.1(19)
Cisco Firewall Services Module Software	Version 3.1(20)
Cisco Firewall Services Module Software	Version 3.1(2)
Cisco Firewall Services Module Software	Version 3.1(3)
Cisco Firewall Services Module Software	Version 3.1(4)
Cisco Firewall Services Module Software	Version 3.1(5)
Cisco Firewall Services Module Software	Version 3.1(6)
Cisco Firewall Services Module Software	Version 3.1(7)
Cisco Firewall Services Module Software	Version 3.1(8)
Cisco Firewall Services Module Software	Version 3.1(9)
Cisco Firewall Services Module Software	Version 3.2
Cisco Firewall Services Module Software	Version 3.2(10)
Cisco Firewall Services Module Software	Version 3.2(11)
Cisco Firewall Services Module Software	Version 3.2(12)
Cisco Firewall Services Module Software	Version 3.2(13)
Cisco Firewall Services Module Software	Version 3.2(14)
Cisco Firewall Services Module Software	Version 3.2(15)
Cisco Firewall Services Module Software	Version 3.2(16)
Cisco Firewall Services Module Software	Version 3.2(17)
Cisco Firewall Services Module Software	Version 3.2(18)
Cisco Firewall Services Module Software	Version 3.2(19)
Cisco Firewall Services Module Software	Version 3.2(1)
Cisco Firewall Services Module Software	Version 3.2(20)
Cisco Firewall Services Module Software	Version 3.2(21)
Cisco Firewall Services Module Software	Version 3.2(2)
Cisco Firewall Services Module Software	Version 3.2(3)
Cisco Firewall Services Module Software	Version 3.2(4)
Cisco Firewall Services Module Software	Version 3.2(5)
Cisco Firewall Services Module Software	Version 3.2(6)
Cisco Firewall Services Module Software	Version 3.2(7)
Cisco Firewall Services Module Software	Version 3.2(8)
Cisco Firewall Services Module Software	Version 3.2(9)
Cisco Firewall Services Module Software	Version 4.0
Cisco Firewall Services Module Software	Version 4.0(10)
Cisco Firewall Services Module Software	Version 4.0(11)
Cisco Firewall Services Module Software	Version 4.0(12)
Cisco Firewall Services Module Software	Version 4.0(13)
Cisco Firewall Services Module Software	Version 4.0(14)
Cisco Firewall Services Module Software	Version 4.0(15)
Cisco Firewall Services Module Software	Version 4.0(1)
Cisco Firewall Services Module Software	Version 4.0(2)
Cisco Firewall Services Module Software	Version 4.0(3)
Cisco Firewall Services Module Software	Version 4.0(4)
Cisco Firewall Services Module Software	Version 4.0(5)
Cisco Firewall Services Module Software	Version 4.0(6)
Cisco Firewall Services Module Software	Version 4.0(7)
Cisco Firewall Services Module Software	Version 4.0(8)
Cisco Firewall Services Module Software	Version 4.1
Cisco Firewall Services Module Software	Version 4.1(1)
Cisco Firewall Services Module Software	Version 4.1(2)
Cisco Firewall Services Module Software	Version 4.1(3)
Cisco Firewall Services Module Software	Version 4.1(4)
Cisco Firewall Services Module Software	Version 4.1(5)
Cisco Firewall Services Module Software	Version 4.1(6)
Cisco Catalyst 6500	All versions
Cisco Catalyst 7600	All versions

Related CWEs

CWE-287

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (4)

http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtml

Source: psirt@cisco.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/70327

Source: psirt@cisco.com

http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/70327

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.