Hide this message
Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.
This article discusses the SAM Pepco32c.ocx Remote Code Execution vulnerability and describes how to address this vulnerability.
Pepco32c.ocx is a third-party application previously used to build pie charts within Orion. The vulnerability exists due to insufficient bound checks on user-supplied input by the affected software. An attacker could exploit this vulnerability to execute arbitrary code in the context of the application using the ActiveX control Pepco32c.ocx. An exploit could allow an attacker to execute arbitrary code or cause a denial of service (DoS) condition.
The security vulnerability is known to be fixed in the following applications versions as the third-party application is longer used:
To fix the issue, upgrade to these versions or higher.
Note: If you are already running version higher than these versions, delete the following file as it is no longer required:
C:\Program Files\Common Files\SolarWinds\Pepco32c.ocx