Page 1 of 3 123 LastLast
Results 1 to 10 of 26
  1. #1
    Member Steph's Avatar
    Join Date
    Oct 2004
    Location
    London, UK
    Posts
    959
    Points
    60

    Default MS XML Core Services (MSXML)

    I've just run a Secunia scan and it tells me that Microsoft XML Core Services (MSXML) v.4.20.9876.0 is insecure with a high threat rating. Apparently the latest version is 4.30.2100.0 but when I go to the MS update site, it doesn't bring it up so I have no idea how to update it (the path is C:\WINDOWS\system32\msxml4.dll).

    I did a search and found the following dated 2 months ago :

    Unpatched Microsoft XML Core Services flaw increasingly targeted in attacks, researchers say - Computerworld

    in which an MS "temporary" fix is suggested :

    Microsoft Security Advisory: Vulnerability in Microsoft XML Core Services could allow remote code execution

    but I don't know if this is the latest information as I haven't been able to find anything of a later date (and really had to search to find the above information).

    Bit confused here - if it's such a big vulnerability why haven't MS released a patch for it yet and just as importantly, is this fix ok to install? It says it's for IT professionals so I don't want to get into any complicated territory I can't handle because then I'd be even more confused than I am already

    I've tried to find out what XML Core Services does but the explanations are about as clear as mud to me - do I need it or could it be removed altogether?

    Thank you.

    Steph
    Today is the dawn of another error ...



    Intel Core i3-3240 @ 3.4GHz;
    RAM 8.0 GB;
    Windows 7 Home Prem SP1 64 bit
    Firefox; IE11

  2. The Following User Says Thank You to Steph For This Useful Post:


  3. #2
    Member abseh1's Avatar
    Join Date
    Jul 2008
    Location
    Tampa Bay
    Posts
    2,319
    Points
    388
    Blog Entries
    2

    Default

    It only applies to MS IE Browsers and all OS from WinXP to Win7
    It is the basic ...do not go to sites you do not trust
    The vulnerability could allow remote code execution if a user views a specially crafted web-page using Internet Explorer.

    It is used primarily by developers ...good and bad and some just clueless

    Below has and updated download as of 15 Aug... link for affected OS by type and Bit type (32/64)....you can manually update...depending on your computer
    Microsoft Security Bulletin MS12-043 - Critical : Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2722479)

    An attacker would have no way to force users to visit such a website.

    Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes the user to the attacker's website.

    SIGNATURE...When I post info I assume you have already read this link
    How to Start Removing Viruses and Spyware from your Computer

  4. The Following 2 Users Say Thank You to abseh1 For This Useful Post:


  5. #3
    Member asoonernurse's Avatar
    Join Date
    Aug 2012
    Location
    California
    Posts
    100
    Points
    15

    Default

    Quote Originally Posted by abseh1 View Post
    Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes the user to the attacker's website.
    Or offering free chicken...

  6. #4
    Member abseh1's Avatar
    Join Date
    Jul 2008
    Location
    Tampa Bay
    Posts
    2,319
    Points
    388
    Blog Entries
    2
    SIGNATURE...When I post info I assume you have already read this link
    How to Start Removing Viruses and Spyware from your Computer

  7. #5
    Member Digerati's Avatar
    Join Date
    Dec 2008
    Location
    Nebraska, USA
    Posts
    892
    Points
    264

    Default

    I had this same problem(?) last week in August. Secunia was saying Microsoft XML Core Services (MSXML) (4 of them) were outdated and to check Windows Update. But WU kept saying all was current. I decided to let it slide and basically do nothing and see if Secunia would sort it out. Then by last Friday, I updated my system with the latest WU updates and reboot and Secunia came up green.
    Bill (AFE7Ret)
    Freedom is NOT Free!
    Heat is the bane of all electronics!
    MS MVP, 2007 - 2018
    ─────────────────────

  8. The Following User Says Thank You to Digerati For This Useful Post:


  9. #6
    Member abseh1's Avatar
    Join Date
    Jul 2008
    Location
    Tampa Bay
    Posts
    2,319
    Points
    388
    Blog Entries
    2

    Default

    Steph

    BTW: Thanks for the info on the Secunia scan
    I have it downloaded now....I saw it before on the Bleeping Computer website , but did not try it until now...abs
    SIGNATURE...When I post info I assume you have already read this link
    How to Start Removing Viruses and Spyware from your Computer

  10. #7
    Member Digerati's Avatar
    Join Date
    Dec 2008
    Location
    Nebraska, USA
    Posts
    892
    Points
    264

    Default

    I've been using Secunia PSI for several years and like it a lot. It is not perfect, and not always very timely, but it does help you keep your system updated. I do not, however, like the 3.0 version and I rolled back to 2.0.
    Bill (AFE7Ret)
    Freedom is NOT Free!
    Heat is the bane of all electronics!
    MS MVP, 2007 - 2018
    ─────────────────────

  11. The Following User Says Thank You to Digerati For This Useful Post:


  12. #8
    Member abseh1's Avatar
    Join Date
    Jul 2008
    Location
    Tampa Bay
    Posts
    2,319
    Points
    388
    Blog Entries
    2

    Default

    Bill

    Thanks

    I use Ninte

    Especially at an reinstall etc....it is a fast way to get many programs installed and updated too

    But, I see a use for Secunia PSI as well
    SIGNATURE...When I post info I assume you have already read this link
    How to Start Removing Viruses and Spyware from your Computer

  13. #9
    Member Digerati's Avatar
    Join Date
    Dec 2008
    Location
    Nebraska, USA
    Posts
    892
    Points
    264

    Default

    Yeah, I remember trying that a few years ago, but can't remember why I did not stick with it. Secunia is not marketed as an installer/uninstaller, but rather as a security application designed to keep our systems updated - and in theory, current on security.
    Bill (AFE7Ret)
    Freedom is NOT Free!
    Heat is the bane of all electronics!
    MS MVP, 2007 - 2018
    ─────────────────────

  14. #10
    Member Steph's Avatar
    Join Date
    Oct 2004
    Location
    London, UK
    Posts
    959
    Points
    60

    Default

    @ abseh 1
    Thanks very much for the update link and info - where did you find it? I really searched but never came up with this!

    You're welcome re: Secunia - it's useful but I also use Filehippo as it bring up updates for different programs.

    @ Digerati
    Interesting you had the same problem and then it sorted itself out - mine still hasn't. The question is, as this problem seems to have been going on for some time now, do I continue to leave it as you did or download the critical update in abseh's link?

    Silly question now re: Secunia though - I also have v. 2 but I wasn't aware there was a v. 3. Where is the update link for Secunia itself - I've looked everywhere but can't see it. And why didn't you like v.3?

    Thank you

    Steph
    Today is the dawn of another error ...



    Intel Core i3-3240 @ 3.4GHz;
    RAM 8.0 GB;
    Windows 7 Home Prem SP1 64 bit
    Firefox; IE11

Page 1 of 3 123 LastLast