Symantec Endpoint Protection (SEP) Vulnerability

Symantec Endpoint Protection (SEP) Vulnerability

We have recently learned of a vulnerability in the Symantec Endpoint Protection (SEP) antivirus application used on campus.  This security vulnerability impacts SEP version 12.1.6 MP4 and earlier on both Windows and Macintosh computers and can enable an attacker to gain complete access to a computer.  All a user needs to do is visit a compromised website or open a malicious file, such as an email attachment, to allow the attacker to gain access to their computer.

All Windows computers on campus that are running the managed SEP client will be automatically upgraded to the newest SEP version over the next few days.  If you are logged into your computer when this update is installed, you will be prompted to restart your computer to complete the install. This restart can be postponed for up to 2 hours.  We strongly encourage you to restart your computer as soon as possible. If your computer is running the managed SEP client, the yellow shield icon on the task bar will have a green dot on it: If you are travelling or away from campus, connecting via VPN may allow you to obtain the update depending on the length of time you are connected and the quality of your internet connection.

For Windows users that are running the unmanaged SEP client on their work or home computer, you will need to manually download and install the newest version of the SEP client available on the Univeristy Systems website in the Computers and Software section.  University Systems recommends that all university desktop and laptop computers use the managed SEP client so that SEP client updates can be applied automatically in the event of a serious vulnerability such as this one.

Macintosh computers should automatically update the next time the SEP LiveUpdate runs to update virus definition files.  No user intervention is required.

If you have any questions or concerns, please contact your Desktop Support Services personnel or the Computer Help Desk at or 250-721-7687.