Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

LUA is not updating Behavior and Security Heuristics 12.1

Created: 12 Sep 2013 | 8 comments
Rinoa21's picture

My liveupdate administrator version is 2.3.0.71. SEPM is 12.1 RU3. All my SEP clients are running SEP 12.1 RU3. Their virus definitions are updated but the Proactive threat protection was left to July definitions.  Checking on my liveupdate administrator it's not downloading the Behavior and Security Heuristics Update. SEP 12.1 RU2 was selected.

please help.

Operating Systems:

Comments 8 CommentsJump to latest comment

Mick2009's picture

Hi Rinoa21,

My liveupdate administrator version is 2.3.0.71.

That really needs to be upgraded ASAP.  There is a known vulnerability in the version you are using.  The current version is LUA 2.3.2.

How to obtain the latest version of Symantec LiveUpdate Administrator (LUA) 2.x
http://www.symantec.com/docs/TECH134809

 

Have you updated your Symantec Product Catalog on this LUA 2.x server, and what SEP 12.1 RU2 components is the server configured to check for?   Here, as an example, is what I have selected for my 32-bit SEP 12.1 clients which retrieve defs directly from the LUA:

sep_121_client_defs.png

These resources may also be of interest:

Knowledgebase Articles for Liveupdate Administrator (LUA)
https://www-secure.symantec.com/connect/articles/knowledgebase-articles-liveupdate-administrator-lua
 

Please do update this thread with your progress!  &: )

Mick

With thanks and best regards,

Mick

Ambesh_444's picture

Hello,

Please check this thread.

Proactive Threat Protection Definitions are older than Virus and Spyware Protection definitions

https://www-secure.symantec.com/connect/forums/proactive-threat-protection-definitions-are-older-virus-and-spyware-protection-definitions

Thank& Regards,

Ambesh

"Your satisfaction is very important to us. If you find above information helpful or it has resolved your issue. Please don't forget to mark the thread as solved."

Rinoa21's picture

Hi Mick,

Can you share with me the article for the list of vulnerabilities for this version.

thanks

lua.JPG
Mick2009's picture

Judging from your screenshot, the product components that LUA 2.3.0 knows about are out of date.  If bringing the SPC up-to-date does not change the names to what is in my screenshot, you may need to upgrade the LUA server for compatability.

Here's a good article on all the changes in the various releases of LUA 2.x:

http://www.symantec.com/business/support/index?page=content&id=TECH177544

And a link directly to the vuln that I mentioned:

Security Advisories Relating to Symantec Products - Symantec LiveUpdate Administrator 2.3 Insecure File Permissions
SYM12-009
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20120615_00

With thanks and best regards,

Mick

Rinoa21's picture

Hi Mick,

Thanks for the update. Let me test the upgrade on my test environment.

Rinoa21's picture

Hi Mick,

Aside from upgrade and re-installation. Hope you can help me resolve this issue first without upgrading and re-installation

Beppe's picture

Hello,

I agree with Mick, upgrade LUA is highly recommended, according to my experience, benefits are much more than risks, if there's any risk, indeed.

Regards,

Giuseppe

Mick2009's picture

Hi Rinoa21,

I recommend updating the Symantec Product Catalog.  Here's a link on how to do that:

About Updating the Symantec Product Catalog in LiveUpdate Administrator 2.x
http://www.symantec.com/docs/TECH201472 
 

Afterwards, you may be able to add the SEP 12.1 RU2 components under the names seen in my screenshot.  If not: LUA 2.3.0 is too old.  Upgrading to 2.3.2 will be necessary. 

With thanks and best regards,

Mick