Regarding:
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20101215_00
Symantec Endpoint Protection(SEP) Manager reporting module allows a php file overwrite from an authorized client that could potentially allow execution of arbitrary code on the server-side.
The solution is to Upgrade to SEP 11 RU6 MP2.
This might be a stupid question but is the system protected if the SEP management server is upgraded or only if the management server and ALL client servers are upgraded? The reason I ask is that it's a relatively small change to upgrade the management server vs upgrading 600+ client servers as well.
Thanks.