<em style='font-weight:bold;'>(Description Provided by <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2011-3298" target="_blank">CVE</a>)</em> : Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.3), 8.0 before 8.0(5.24), 8.1 before 8.1(2.50), 8.2 before 8.2(5), 8.3 before 8.3(2.18), 8.4 before 8.4(1.10), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) allow remote attackers to bypass authentication via a crafted TACACS+ reply, aka Bug IDs CSCto40365 and CSCto74274.

Upgrade Firewall Services Module (FWSM) to version 3.1(21) or higher or 3.2(22) or higher or 4.0(16) or higher or 4.1(7) or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2011-3298 (see also: NVD)
• Secunia Advisory ID: 46278 46330
• ISS X-Force ID: 70328
• Related OSVDB ID: 76083 76084 76086 76087 76088 76089 76090
• Mail List Post: http://seclists.org/fulldisclosure/2011/Oct/233
  http://seclists.org/fulldisclosure/2011/Oct/234
• Vendor Specific Advisory URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCto74274 [ Auth Req'd ]
  http://www.cisco.com/warp/public/707/cisco-sa-20111005-asa.shtml
  http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtml

• Not Available