Vulnerability Description
Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Firewall Services Module Software | 3.1 |
| Cisco | Catalyst 6500 | All versions |
| Cisco | Catalyst 7600 | All versions |
Related Weaknesses (CWE)
References
- http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtmlVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70327
- http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtmlVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70327
FAQ
What is CVE-2011-3297?
CVE-2011-3297 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attacker...
How severe is CVE-2011-3297?
CVE-2011-3297 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-3297?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Firewall Services Module Software, Cisco Catalyst 6500, Cisco Catalyst 7600.