Why are the Security Content dates for Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Manager (SEPM) not progressing beyond 12/31/09?
Security Content dates on the following Symantec products are dated 12/31/09 rev xxx despite being the latest available through LiveUpdate:
An issue was identified in the Symantec Endpoint Protection Manager (SEPM)/Symantec Protection Center (SPC) which causes Security Content newer than 12/31/2009 11:59 PM to be considered older than content previous to that date/time. Any content with a date of 1/1/10 12:00 AM or newer would be purged from the SEPM if the maximum number of definitions revisions had been reached. Since 12/31/09 rev xxx is considered the latest content available to an unpatched SEPM/SPC, a client would not update to a content revision later than the highest numbered revision available on 12/31/2009. To mitigate this issue, Security Response stopped incrementing the date on SEP Security Content downloaded by SEPM/SPC Servers and instead only incremented the revision number of the content. Symantec released a patch to resolve this issue for SEPM/SPC, but Security Response will continue to provide both a 12/31/2009 rev xxx and 2010 content streams for SEPM/SPC for the time being.
Symantec released a patch that will resolve this issue for Symantec Endpoint Protection 11 and Symantec Endpoint Protection Small Business Edition 12 users. This patch is available via Public LiveUpdate, LiveUpdate, Administrator and LiveUpdate Administration Utility. It can also be downloaded directly from the Symantec FTP server. The vast majority of SEPM/SPC users will already be patched due to automatic LiveUpdates.
Note: If you do not wish to have your SEPM/SPC updated automatically, please see the section below titled: “Preventing LiveUpdate from updating SEPM/SPC” under the SEPM and SPC Workarounds and Information section.
Manual Patch Installation Instructions: