Submit a ticketCall us

Don’t fall victim to a ransomware attack
Backups are helpful, but sometimes that’s not enough to protect your business against ransomware. At our live webcast we will discuss how to protect against ransomware attacks with SolarWinds® Patch Manager and how to leverage log data to detect ransomware. Register now for our live webcast.

Home > Success Center > Network Configuration Manager (NCM) > MSXML4.dll Vulnerability in NCM 7.3.2 and Earlier

MSXML4.dll Vulnerability in NCM 7.3.2 and Earlier

Table of contents
Created by Andrew Heinzer, last modified by MindTouch on Jun 23, 2016

Views: 32 Votes: 1 Revisions: 8

Overview

 

This MS XML vulnerability was a known issue specifically with the Network Configuration Manager (NCM). All NCM versions from 7.3.2 and earlier rely on this module to work properly such that any workaround that involves removing or renaming certain dll files to remove the vulnerability will cause NCM to fail.

Environment

NCM versions from 7.0 to 7.3.2 

Detail


This issue has been fixed in the 7.4 upgrade for NCM and no longer requires the MS XML component.

Notes:

  • Before upgrading to version 7.4, ensure that your NCM version is at least 7.3.x.
  • Upgrading NCM to version 7.4 does not automatically remove the MS XML component. However, you may then safely remove this without causing NCM to fail.
  • If NCM is integrated with NPM, ensure that NPM is version 11.5.2 or higher.


This issue is specified in the Fixed Issues section of the NCM 7.4 Release Notes:
http://www.solarwinds.com/documentat...leaseNotes.htm

 

 

 

Last modified
21:09, 22 Jun 2016

Tags

Classifications

Public