MS10-089: Vulnerabilities in Forefront Unified Access Gateway and Microsoft Intelligent Application Gateway could cause elevation of privilege

Article translations Article translations
Article ID: 2316074 - View products that this article applies to.
Expand all | Collapse all

On This Page

INTRODUCTION

Microsoft has released security bulletin MS10-089. To view the complete security bulletin, visit the following Microsoft website: 
IT professionals
http://www.microsoft.com/technet/security/bulletin/ms10-089.mspx

How to obtain help and support for this security update

For enterprise customers, support for security updates is available through your usual support contacts.

MORE INFORMATION

Known issues with this security update

The following known issues apply to all the related updates that are listed in the "Additional information about this security update" section.
  • This security update is listed in the Programs and Features item in Control Panel as "Hotfix for Microsoft Forefront UAG 2010." There is no mention that this is a security update. Security updates are otherwise typically listed as "Security Update for xxxxx."
  • When you uninstall this security update, you are prompted to insert the Unified Access Gateway (UAG) CD. The installation program then exits, and you receive a 2920 error. To remove this security update, log on as an administrator, and then uninstall the update by using the Programs and Features item in Control Panel. Click View installed updates to access the update.
    Note We do not recommend that you uninstall any security update.
  • You cannot use the /quiet and /forcerestart switches in combination when you install this update.
  • After you install this security update, the Remote Desktop Gateway service may not restart automatically. When you try to use the Remote Desktop client to create a remote desktop session, you may receive an error message that resembles the following:
    Your computer can't connect to the remote computer because the Remote Desktop Gateway server is temporarily unavailable. Try reconnecting later or contact your network administrator for assistance.

    If you have any Remote Desktop Services applications that are published by using any UAG trunk, you must manually restart the service by using the Services console.
  • If you install this security update on the original RTM version of Forefront Unified Access Gateway, and then you apply Forefront Unified Access Gateway Update 1 or Forefront Unified Access Gateway Update 2, you must install this security update again.

Additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.
  • 2433584 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 1: November 9, 2010
  • 2433585 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010: November 9, 2010
  • 2418933 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 2: November 9, 2010

Properties

Article ID: 2316074 - Last Review: November 9, 2010 - Revision: 1.1
APPLIES TO
  • Microsoft Forefront Unified Access Gateway 2010
Keywords: 
kbbug kbfix kbsecvulnerability kbsecurity kbsecbulletin atdownload kbexpertiseinter kbsurveynew KB2316074

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com