Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.
https://exchange.xforce.ibmcloud.com/vulnerabilities/32521
http://www.vupen.com/english/advisories/2007/0609
http://www.securitytracker.com/id?1017650
http://www.securityfocus.com/bid/22561
http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml