Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: insecure microsoft XML Core Services (MSXML)4.x

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Microsoft
And, this specific program:
Microsoft XML Core Services (MSXML) 4.x

This thread has been marked as locked.
Graniteson insecure microsoft XML Core Services (MSXML)4.x
Member 25th Nov, 2009 09:05
Ranking: 0
Posts: 1
User Since: 18th Nov, 2009
System Score: N/A
Location: N/A
hi,secunia tells me that xml core services (msxml)4.x is insecure,i have tried sugestions made on other threads but to no avail,iam on a new windows7 home premium 64bit,please help?

mogs RE: insecure microsoft XML Core Services (MSXML)4.x
Expert Contributor 25th Nov, 2009 10:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
on 25th Nov, 2009 09:05, Graniteson wrote:
hi,secunia tells me that xml core services (msxml)4.x is insecure,i have tried sugestions made on other threads but to no avail,iam on a new windows7 home premium 64bit,please help?

Hi. Don't know much about Windows 7....but I've only just today gotten the update for XML core services 4.x, : and I tend to check for updates every day quite religeously.

--
Was this reply relevant?
+0
-0
laurent29 RE: insecure microsoft XML Core Services (MSXML)4.x
Member 5th Dec, 2009 03:38
Score: -42
Posts: 24
User Since: 5th Dec 2009
System Score: N/A
Location: N/A
Last edited on 5th Dec, 2009 03:40
same problem with the same computer...
Was this reply relevant?
+0
-0
Maurice Joyce RE: insecure microsoft XML Core Services (MSXML)4.x
Handling Contributor 5th Dec, 2009 08:34
Score: 11710
Posts: 8,954
User Since: 4th Jan 2009
System Score: N/A
Location: UK

UPDATING MSXML 4
================

1. MSXML 4 is a standalone version that supports legacy 3rd party installs.
2. Microsoft have released the final SP prior to it becoming obsolete on 13 April 2010.

Your problem should be resolved if you uninstall all versions of MSXML 4 SP2 - reboot - and then install MSXML 4 SP3 which is a complete replacement for SP2 & the various hot fixes.

As for any new install read the Release Notes here:
http://download.microsoft.com/download/A/2/D/A2D85...

The download link is here:
http://www.microsoft.com/downloads/details.aspx?Fa...
The download file to select is MSXML.MSI 2.3MB

Secunia picks it up as secure with version 4.30.2107.0




07:34 05/12/2009



ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ ŻŻŻŻ


--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+0
-0
laurent29 RE: insecure microsoft XML Core Services (MSXML)4.x
Member 5th Dec, 2009 22:54
Score: -42
Posts: 24
User Since: 5th Dec 2009
System Score: N/A
Location: N/A
Last edited on 5th Dec, 2009 22:57
the problem is in the touuchpad driver.I've not find no solution on toshiba website.don't think this problem is so important for the security.but if you have an other link please post it!
Was this reply relevant?
+0
-0
Maurice Joyce RE: insecure microsoft XML Core Services (MSXML)4.x
Handling Contributor 6th Dec, 2009 00:20
Score: 11710
Posts: 8,954
User Since: 4th Jan 2009
System Score: N/A
Location: UK
What is the path to your vulnerability?

FINDING A VULNERABILITY FILE PATH
=================================

To locate the exact file that the Secunia PSI has detected, use or switch to the ADVANCED interface, then :

1 Click on the + sign of the programme to "expand' it.
2 Click on Technical Details in the Toolbox to see the installation path of the detected file. (Copy (CTRL+C) & paste (CTRL+V) the Installation Path of the file back to the Forum if U are unsure what to do next)).


23:19 05/12/2009




--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+0
-0
laurent29 RE: insecure microsoft XML Core Services (MSXML)4.x
Member 12th Dec, 2009 18:17
Score: -42
Posts: 24
User Since: 5th Dec 2009
System Score: N/A
Location: N/A
the problem come from toshiba touch pad driver.but I've not find any newest version of this driver on toshiba webside.If someone have a solution, please post it...
Was this reply relevant?
+0
-0

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.

laurent29

RE: insecure microsoft XML Core Services (MSXML)4.x
[+]
This reply has been minimised due to a negative Relevancy Score.
OldPeter RE: insecure microsoft XML Core Services (MSXML)4.x
Member 24th Dec, 2009 11:32
Score: 0
Posts: 7
User Since: 15th Jan 2009
System Score: N/A
Location: N/A
Have a new Acer laptop with Windows 7 factory installed but it has the same defect. Not sure how to cure as the program you recommend be downloaded is not cleared for Windows 7.. Help please
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability