Mailing the story:
Cisco Announces IOS Exploit Workarounds
Cisco has posted workarounds for a vulnerability in the HTTP server found in Cisco's IOS. In early December, a researcher reported that the built-in HTTP server in IOS versions 11.0 through 12.4 was vulnerable to attacks that could grant a malicious person access to administrative privileges on affected devices.