Endpoint Protection Small Business Edition

Hello,

We use SEP 12.1.x SBE (Small Business Edition) version, along with SEPM - all currently at 12.1.5 version. 

I read from Security Advisory (http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150730_00) that I need to upgrade to 12.1.6.1a toi protect from vulnerabilities (in fact, I assisted in doing that for company with Enterprise Edition)

But in FileConnect I can see only 12.1.5 version downloadable! And I read from http://www.symantec.com/page.jsp?id=sbe-migration that I need to move to SEP SBE (was SEP SBE 2013) which I understand is different product, since there will not be any 12.1.x past 12.1.5 (which is vulnerable).

So what do I exactly do to patch both SEPM and clients? Our license renewal cycle is in December. I'm not convinced to upgrade to SBE 2013 yet (different features, much more expensive).

You should still be able to renew on SEP SBE. There are additional details here:

https://www.symantec.com/content/en/us/enterprise/other_resources/eol-overview-sep-sbe-12-1-sps-sbe-4-0.pdf

Thanks ᗺrian, I will pass this info to our reseller.

Please confirm my understanding, that we need to do SEP SBE renewal asap - since 12.1.5 is deemed insecure and there is no 12.1.6 upgrade or another fix for 12.1.5 in SBE flavour. If so, this is a not-so-nice way of speeding customer move to new sku's...

Best regards

Adam

There is no upgrade for 12.1.6 Small Business Edition (SBE).

Mitigations are also available if it is not possible to upgrade immediately.  Also, ensure that SEP's IPS component is installed and enabled.  The following new IPS signatures will offer protection against attempted exploits of the vulnerabilities:

• 28651 (Web Attack: SEPM SQL Injection)
• 28650 (Web Attack: SEPM Directory Traversal)
• 28649 (Web Attack: SEPM unauthenticated password reset)

Reference: https://www-secure.symantec.com/connect/forums/vulnerabilities-sep-client-and-sepm-upgrade-sep-121-ru6-mp1