The following policy can be configured as a workaround to mitigate this
vulnerability. Complete the following steps to deploy this policy for the Cisco
Security Agent running on the Management Center for Cisco Security Agent
Create a New Application Class
Step 1. Specify the name of the
application class as 'CSA MC - all applications but not its
Step 2. Select when created from
one of the following executables in the Add Process to
application class area and specify @(regpath
as the value.
Step 3. Ensure that the Only this
process option is selected.
Step 4. Click Save.
Create a priority deny Application Control Rule
Step 1. Name the APCR as CSAMC
applications invoking non-CSAMC applications for better
Step 2. Enable logging.
Step 3. For Current applications
in any of the following selected classes select the application class
created under "Create a New Application Class." For the But
not option, select <none>.
Step 4. For New applications in
any of the following selected classes select <All
Applications>. For the But not option, select the
new application class created under "Create a New Application Class."
Step 5. Click