Submit a ticketCall us

AnnouncementsChange Is Inevitable

Get valuable help when it comes to tracking and monitoring changes. SolarWinds® Server Configuration Monitor (SCM) is designed to help you: detect, track, and receive alerts when changes occur, correlate system performance against configuration changes, compare server and application configuration against custom baselines, and verify application and system changes.

Learn more.

Home > Success Center > Archive > 2018June25 - InfoDev Deletes > MSXML4.dll Vulnerability in NCM 7.3.2 and Earlier

MSXML4.dll Vulnerability in NCM 7.3.2 and Earlier

Table of contents
This article is slated for Deletion. Do not update this article. If you have questions please send a message to mt-feedback@solarwinds.com

Created by Andrew Heinzer, last modified by MindTouch on Jun 23, 2016

Views: 995 Votes: 1 Revisions: 8

Overview

 

This MS XML vulnerability was a known issue specifically with the Network Configuration Manager (NCM). All NCM versions from 7.3.2 and earlier rely on this module to work properly such that any workaround that involves removing or renaming certain dll files to remove the vulnerability will cause NCM to fail.

Environment

NCM versions from 7.0 to 7.3.2 

Detail


This issue has been fixed in the 7.4 upgrade for NCM and no longer requires the MS XML component.

Notes:

  • Before upgrading to version 7.4, ensure that your NCM version is at least 7.3.x.
  • Upgrading NCM to version 7.4 does not automatically remove the MS XML component. However, you may then safely remove this without causing NCM to fail.
  • If NCM is integrated with NPM, ensure that NPM is version 11.5.2 or higher.


This issue is specified in the Fixed Issues section of the NCM 7.4 Release Notes:
http://www.solarwinds.com/documentat...leaseNotes.htm

 

 

 

Last modified

Tags

Classifications

Public