CVE Vulnerabilities

CVE-2011-3298

Improper Authentication

Published: Oct 06, 2011 | Modified: Aug 15, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.9 HIGH
AV:A/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.0(8.13), 7.1 and 7.2 before 7.2(5.3), 8.0 before 8.0(5.24), 8.1 before 8.1(2.50), 8.2 before 8.2(5), 8.3 before 8.3(2.18), 8.4 before 8.4(1.10), and 8.5 before 8.5(1.1) and Cisco Firewall Services Module (aka FWSM) 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) allow remote attackers to bypass authentication via a crafted TACACS+ reply, aka Bug IDs CSCto40365 and CSCto74274.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name Vendor Start Version End Version
Adaptive_security_appliance_software Cisco 7.0 7.0
Adaptive_security_appliance_software Cisco 7.0(0) 7.0(0)
Adaptive_security_appliance_software Cisco 7.0(1) 7.0(1)
Adaptive_security_appliance_software Cisco 7.0(2) 7.0(2)
Adaptive_security_appliance_software Cisco 7.0(4) 7.0(4)
Adaptive_security_appliance_software Cisco 7.0(5) 7.0(5)
Adaptive_security_appliance_software Cisco 7.0(5.2) 7.0(5.2)
Adaptive_security_appliance_software Cisco 7.0(6) 7.0(6)
Adaptive_security_appliance_software Cisco 7.0(6.7) 7.0(6.7)
Adaptive_security_appliance_software Cisco 7.0(7) 7.0(7)
Adaptive_security_appliance_software Cisco 7.0(8) 7.0(8)
Adaptive_security_appliance_software Cisco 7.0.1 7.0.1
Adaptive_security_appliance_software Cisco 7.0.1.4 7.0.1.4
Adaptive_security_appliance_software Cisco 7.0.2 7.0.2
Adaptive_security_appliance_software Cisco 7.0.4 7.0.4
Adaptive_security_appliance_software Cisco 7.0.4.3 7.0.4.3
Adaptive_security_appliance_software Cisco 7.0.5 7.0.5
Adaptive_security_appliance_software Cisco 7.0.6 7.0.6
Adaptive_security_appliance_software Cisco 7.0.7 7.0.7
Adaptive_security_appliance_software Cisco 7.0.8 7.0.8
Adaptive_security_appliance_software Cisco 7.0.8 7.0.8
Adaptive_security_appliance_software Cisco 7.1 7.1
Adaptive_security_appliance_software Cisco 7.2 7.2
Adaptive_security_appliance_software Cisco 7.2(1) 7.2(1)
Adaptive_security_appliance_software Cisco 7.2(1.22) 7.2(1.22)
Adaptive_security_appliance_software Cisco 7.2(2) 7.2(2)
Adaptive_security_appliance_software Cisco 7.2(2.5) 7.2(2.5)
Adaptive_security_appliance_software Cisco 7.2(2.7) 7.2(2.7)
Adaptive_security_appliance_software Cisco 7.2(2.8) 7.2(2.8)
Adaptive_security_appliance_software Cisco 7.2(2.10) 7.2(2.10)
Adaptive_security_appliance_software Cisco 7.2(2.14) 7.2(2.14)
Adaptive_security_appliance_software Cisco 7.2(2.15) 7.2(2.15)
Adaptive_security_appliance_software Cisco 7.2(2.16) 7.2(2.16)
Adaptive_security_appliance_software Cisco 7.2(2.17) 7.2(2.17)
Adaptive_security_appliance_software Cisco 7.2(2.18) 7.2(2.18)
Adaptive_security_appliance_software Cisco 7.2(2.19) 7.2(2.19)
Adaptive_security_appliance_software Cisco 7.2(2.48) 7.2(2.48)
Adaptive_security_appliance_software Cisco 7.2(3) 7.2(3)
Adaptive_security_appliance_software Cisco 7.2(4) 7.2(4)
Adaptive_security_appliance_software Cisco 7.2(5) 7.2(5)
Adaptive_security_appliance_software Cisco 7.2.1 7.2.1
Adaptive_security_appliance_software Cisco 7.2.2 7.2.2
Adaptive_security_appliance_software Cisco 7.2.3 7.2.3
Adaptive_security_appliance_software Cisco 7.2.4 7.2.4
Adaptive_security_appliance_software Cisco 7.2.5 7.2.5
Adaptive_security_appliance_software Cisco 8.0 8.0
Adaptive_security_appliance_software Cisco 8.0(2) 8.0(2)
Adaptive_security_appliance_software Cisco 8.0(3) 8.0(3)
Adaptive_security_appliance_software Cisco 8.0(4) 8.0(4)
Adaptive_security_appliance_software Cisco 8.0(5) 8.0(5)
Adaptive_security_appliance_software Cisco 8.0.2 8.0.2
Adaptive_security_appliance_software Cisco 8.0.3 8.0.3
Adaptive_security_appliance_software Cisco 8.0.4 8.0.4
Adaptive_security_appliance_software Cisco 8.0.5 8.0.5
Adaptive_security_appliance_software Cisco 8.1 8.1
Adaptive_security_appliance_software Cisco 8.2(1) 8.2(1)
Adaptive_security_appliance_software Cisco 8.2(2) 8.2(2)
Adaptive_security_appliance_software Cisco 8.2(3) 8.2(3)
Adaptive_security_appliance_software Cisco 8.2(3.9) 8.2(3.9)
Adaptive_security_appliance_software Cisco 8.2(4) 8.2(4)
Adaptive_security_appliance_software Cisco 8.2(4.1) 8.2(4.1)
Adaptive_security_appliance_software Cisco 8.2(4.4) 8.2(4.4)
Adaptive_security_appliance_software Cisco 8.2(5) 8.2(5)
Adaptive_security_appliance_software Cisco 8.2.1 8.2.1
Adaptive_security_appliance_software Cisco 8.2.2 8.2.2
Adaptive_security_appliance_software Cisco 8.2.2 8.2.2
Adaptive_security_appliance_software Cisco 8.3(1) 8.3(1)
Adaptive_security_appliance_software Cisco 8.3(2) 8.3(2)
Adaptive_security_appliance_software Cisco 8.4(1) 8.4(1)
Adaptive_security_appliance_software Cisco 8.4(1.11) 8.4(1.11)
Adaptive_security_appliance_software Cisco 8.4(2) 8.4(2)
Adaptive_security_appliance_software Cisco 8.5 8.5
Adaptive_security_appliance_software Cisco 8.5(1) 8.5(1)

Potential Mitigations

References