Cisco Cisco IOS Software Releases 12.2 MC

Beginning in privileged EXEC mode, follow these steps to configure the HTTP server interface:

If you use Internet Explorer Version 5.5 and select a URL with a nonstandard port at the end of the 
address (for example, www.cisco.com:84), you must enter http:// as the URL prefix. Otherwise, you 
cannot launch the device manager.

These are the resolved caveats in this software release:

CSCei61732

Cisco IOS may permit arbitrary code execution after exploitation of a heap-based buffer overflow 
vulnerability. Cisco has included additional integrity checks in its software, as further described 
below, that are intended to reduce the likelihood of arbitrary code execution.

Cisco has made free software available that includes the additional integrity checks for affected 
customers.

This advisory is posted at 

These documents provide complete information about the Catalyst 2960 switches and are available at 
Cisco.com:

You can order printed copies of documents with a DOC-xxxxxx= number from the Cisco.com sites and 
from the telephone numbers listed in the 

.

Enter global configuration mode.

ip http authentication {enable | local | 
tacacs}

Configure the HTTP server interface for the type of authentication that 
you want to use.

enable—Enable password, which is the default method of HTTP 
server user authentication, is used.

local—Local user database, as defined on the Cisco router or access 
server, is used.

tacacs—TACACS server is used.

Return to privileged EXEC mode.

Verify your entries.