Lucene search
HistoryOct 06, 2011 - 10:55 a.m.
CVE-2011-3297
cisco
fwsm
denial of service
authentication
bug
csctn15697
cve-2011-3297
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.6%
Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.
Affected configurations
Node
ciscofirewall_services_module_softwareMatch3.1
ORciscofirewall_services_module_softwareMatch3.1\(2\)
ORciscofirewall_services_module_softwareMatch3.1\(3\)
ORciscofirewall_services_module_softwareMatch3.1\(4\)
ORciscofirewall_services_module_softwareMatch3.1\(5\)
ORciscofirewall_services_module_softwareMatch3.1\(6\)
ORciscofirewall_services_module_softwareMatch3.1\(7\)
ORciscofirewall_services_module_softwareMatch3.1\(8\)
ORciscofirewall_services_module_softwareMatch3.1\(9\)
ORciscofirewall_services_module_softwareMatch3.1\(10\)
ORciscofirewall_services_module_softwareMatch3.1\(11\)
ORciscofirewall_services_module_softwareMatch3.1\(12\)
ORciscofirewall_services_module_softwareMatch3.1\(13\)
ORciscofirewall_services_module_softwareMatch3.1\(14\)
ORciscofirewall_services_module_softwareMatch3.1\(15\)
ORciscofirewall_services_module_softwareMatch3.1\(16\)
ORciscofirewall_services_module_softwareMatch3.1\(17\)
ORciscofirewall_services_module_softwareMatch3.1\(18\)
ORciscofirewall_services_module_softwareMatch3.1\(19\)
ORciscofirewall_services_module_softwareMatch3.1\(20\)
ORciscofirewall_services_module_softwareMatch3.2
ORciscofirewall_services_module_softwareMatch3.2\(1\)
ORciscofirewall_services_module_softwareMatch3.2\(2\)
ORciscofirewall_services_module_softwareMatch3.2\(3\)
ORciscofirewall_services_module_softwareMatch3.2\(4\)
ORciscofirewall_services_module_softwareMatch3.2\(5\)
ORciscofirewall_services_module_softwareMatch3.2\(6\)
ORciscofirewall_services_module_softwareMatch3.2\(7\)
ORciscofirewall_services_module_softwareMatch3.2\(8\)
ORciscofirewall_services_module_softwareMatch3.2\(9\)
ORciscofirewall_services_module_softwareMatch3.2\(10\)
ORciscofirewall_services_module_softwareMatch3.2\(11\)
ORciscofirewall_services_module_softwareMatch3.2\(12\)
ORciscofirewall_services_module_softwareMatch3.2\(13\)
ORciscofirewall_services_module_softwareMatch3.2\(14\)
ORciscofirewall_services_module_softwareMatch3.2\(15\)
ORciscofirewall_services_module_softwareMatch3.2\(16\)
ORciscofirewall_services_module_softwareMatch3.2\(17\)
ORciscofirewall_services_module_softwareMatch3.2\(18\)
ORciscofirewall_services_module_softwareMatch3.2\(19\)
ORciscofirewall_services_module_softwareMatch3.2\(20\)
ORciscofirewall_services_module_softwareMatch3.2\(21\)
ORciscofirewall_services_module_softwareMatch4.0
ORciscofirewall_services_module_softwareMatch4.0\(1\)
ORciscofirewall_services_module_softwareMatch4.0\(2\)
ORciscofirewall_services_module_softwareMatch4.0\(3\)
ORciscofirewall_services_module_softwareMatch4.0\(4\)
ORciscofirewall_services_module_softwareMatch4.0\(5\)
ORciscofirewall_services_module_softwareMatch4.0\(6\)
ORciscofirewall_services_module_softwareMatch4.0\(7\)
ORciscofirewall_services_module_softwareMatch4.0\(8\)
ORciscofirewall_services_module_softwareMatch4.0\(10\)
ORciscofirewall_services_module_softwareMatch4.0\(11\)
ORciscofirewall_services_module_softwareMatch4.0\(12\)
ORciscofirewall_services_module_softwareMatch4.0\(13\)
ORciscofirewall_services_module_softwareMatch4.0\(14\)
ORciscofirewall_services_module_softwareMatch4.0\(15\)
ORciscofirewall_services_module_softwareMatch4.1
ORciscofirewall_services_module_softwareMatch4.1\(1\)
ORciscofirewall_services_module_softwareMatch4.1\(2\)
ORciscofirewall_services_module_softwareMatch4.1\(3\)
ORciscofirewall_services_module_softwareMatch4.1\(4\)
ORciscofirewall_services_module_softwareMatch4.1\(5\)
ORciscofirewall_services_module_softwareMatch4.1\(6\)
ciscocatalyst_6500
ORciscocatalyst_7600
Related
cvelist
cvelist
CVE-2011-3297
2011-10-06 10:00:00
prion
prion
Authentication flaw
2011-10-06 10:55:00
nvd
nvd
CVE-2011-3297
2011-10-06 10:55:05
cisco
cisco
Multiple Vulnerabilities in Cisco Firewall Services Module
2011-10-05 16:00:00
securityvulns
securityvulns
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module
2011-10-10 00:00:00
Cisco ASA / Cisco FSM multiple security vulnerabilities
2011-10-10 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.6%
Related for CVE-2011-3297