Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: NTI Media Maker 8 and msxml4.dll insecure

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

This thread has been marked as resolved.
julio991 NTI Media Maker 8 and msxml4.dll insecure
Member 4th Dec, 2010 22:48
Ranking: 1
Posts: 23
User Since: 7th Mar, 2010
System Score: N/A
Location: CA
I just downloaded Secunia PSI on this new Acer laptop x64 Windows 7 Home Premium. When I bought this laptop a month ago it came with a free NTI Media Maker 8 sortware program on it that I think is outdated or maybe just a lure to buy the new upgrade. The reason I think that this is so is the only vulnerability that shows is:Microsoft xml Core Services (MSXML0X4, this is the vulnerability or the insecure program. The installation path shows as C:\Program Files (X86)\ NewTech Infosystems\NTI Media Maker 8\Media Maker\msxml4.dll. What PSI says is that normally I could update with Windows Update, but that doesn't work, so I'm at a loss as to what I need to do to get rid of this vulnerability. It's not a bad little program,(NTI), But I'm not paying the money to upgrade besides the vulnerability seems to be the msxml 4 so I'm kind of at a loss what needs to happen here. Hopefully you all can give me some insight here.

I posted this earlier in vulnerabilities and was told to re-post in the proper place, so I hope that I.m in the right place now. I've updated the program from build 6630 to 6637 and yet the msxml4.dll associated with the software didn't update. It seems to be from 2007.

Post "RE: NTI Media Maker 8 and msxml4.dll insecure" has been selected as an answer.
Anthony Wells RE: NTI Media Maker 8 and msxml4.dll insecure
Expert Contributor 4th Dec, 2010 23:13
Score: 2428
Posts: 3,316
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 4th Dec, 2010 23:21
Hi julio ,

there is a problem when people post in the comments section under a Secunia Advisory as this opens a "Secunia" headed thread in the vulnerabilities sub-forum and is reserved for technical discussions - casual posters get "thumbs down" votes from Secunia . Your posting there can cause confusion as you are referring to a specific programme on your PC . Posting here would have been better ; but that is hindsight .

I have posted a possible work around to your other "vulnerabilities" thread :-

http://secunia.com/community/forum/thread/show/662...

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
julio991 RE: NTI Media Maker 8 and msxml4.dll insecure
Member 4th Dec, 2010 23:37
Score: 1
Posts: 23
User Since: 7th Mar 2010
System Score: N/A
Location: CA
Thanx, got it straight now. Didn't want to doublepost, but I was afraid people would miss the post in vulnerabilities. That is why I posted here.
Was this reply relevant?
+0
-0
ddmarshall RE: NTI Media Maker 8 and msxml4.dll insecure
Dedicated Contributor 4th Dec, 2010 23:49
Score: 1205
Posts: 957
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Last edited on 4th Dec, 2010 23:54
You can't replace 4.0 with 6.0. If the program is expecting to use 4.0, it won't work with other versions.

If you haven't got MSXML 4.0 installed, the download for MSXML 4.0 SP3 is at
http://www.microsoft.com/downloads/en/details.aspx...

Run Windows Update after installing.

However, I'm inclined to think this is too much effort for the likely benefit.

Later
As Maurice Joyce has picked up your thread, I'll duck out now.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0
julio991 RE: NTI Media Maker 8 and msxml4.dll insecure
Member 5th Dec, 2010 00:16
Score: 1
Posts: 23
User Since: 7th Mar 2010
System Score: N/A
Location: CA
OK I installed the link that you sent me. However, before that I went to the NTI Media Maker 8 folder and disabled the msxml.dll by putting.bak after the extension and immediately the insecurity said it was gone via a pop up, but I didn't replace the msxml4.dll in the folder I just disabled it. Plus I downloaded the link you sent me but I can't find it. Do I need to replace that extension that I disabled in the NTI MM8 folder and if so where do I get the replacement.
Was this reply relevant?
+0
-0
Maurice Joyce RE: NTI Media Maker 8 and msxml4.dll insecure
Handling Contributor 5th Dec, 2010 15:31
Score: 11621
Posts: 8,912
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Julio,
See my post on your other thread. I would not worry too much about which part of the Forum U use. There are no rules but as explained it is better to use PROGRAMS or OPEN DISCUSSION.

If U post to the wrong one in future SEcunia will move it for U.

--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+2
-0
ddmarshall RE: NTI Media Maker 8 and msxml4.dll insecure
Dedicated Contributor 5th Dec, 2010 16:18
Score: 1205
Posts: 957
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Sorry I couldn't get back to you earlier.
It looks like you are all good thanks to MJ.

If the program can't find the DLL in the directory it loaded from, it should search the system directory - in your case: C:\Windows\SysWOW64.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability