<em style='font-weight:bold;'>(Description Provided by <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2011-3297" target="_blank">CVE</a>)</em> : Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7), when certain authentication configurations are used, allows remote attackers to cause a denial of service (module crash) by making many authentication requests for network access, aka Bug ID CSCtn15697.

Upgrade to version 3.1(21) or higher or 3.2(22) or higher or 4.0(16) or higher or 4.1(7) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2011-3297 (see also: NVD)
• Secunia Advisory ID: 46278
• ISS X-Force ID: 70327
• Related OSVDB ID: 76083 76085 76086 76087 76088 76089 76090
• Vendor Specific Advisory URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtn15697 [ Auth Req'd ]
  http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtml

• Not Available