Cisco Security Advisory – A vulnerability exists in Cisco IOS? software where an unauthenticated attacker could bypass access control policies when the Object Groups for Access Control Lists (ACLs) feature is used. Cisco has released free software updates that address this vulnerability. There are no workarounds for this vulnerability other than disabling the Object Groups for ACLs feature.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81593/cisco-sa-20090923-acl.txt
Source: https://packetstormsecurity.com/files/81593/Cisco-Security-Advisory-20090923-acl.html