Understanding activity on the network provides information and visibility that can be used to identify potential security incidents. Organizations should log events from devices and review the logged data to provide insight into anomalies or malicious activity. For logging best practices, consult the Cisco Guide to Harden Cisco IOS Devices
Network traffic should be monitored security-related network activity. NetFlow identifies security-related network activity. For NetFlow configuration details, consult the Introduction to Introduction to Cisco IOS NetFlow - A Technical Overview
It is critical to prevent unauthorized direct communication to network devices. Restrict network traffic destined for the network infrastructure to protect against reconnaissance and denial-of-service (DoS) attacks. For configuration details, consult Protecting Your Core: Infrastructure Protection Access Control Lists
Administrators are advised to apply the appropriate updates.
Administrators are advised to allow only trusted users to have network access.
Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.
Administrators are advised to monitor affected systems.
The Cisco Applied Intelligence team has created the following companion document to guide administrators in identifying and mitigating attempts to exploit this vulnerability prior to applying updated software: Identifying and Mitigating Multiple Vulnerabilities in Cisco Unified Customer Voice Portal Software