MS10-089: Vulnerabilities in Forefront Unified Access Gateway and Microsoft Intelligent Application Gateway could cause elevation of privilege
How to obtain help and support for this security updateFor enterprise customers, support for security updates is available through your usual support contacts.
Known issues with this security updateThe following known issues apply to all the related updates that are listed in the "Additional information about this security update" section.
- This security update is listed in the Programs and Features item in Control Panel as "Hotfix for Microsoft Forefront UAG 2010." There is no mention that this is a security update. Security updates are otherwise typically listed as "Security Update for xxxxx."
- When you uninstall this security update, you are prompted to insert the Unified Access Gateway (UAG) CD. The installation program then exits, and you receive a 2920 error. To remove this security update, log on as an administrator, and then uninstall the update by using the Programs and Features item in Control Panel. Click View installed updates to access the update.
Note We do not recommend that you uninstall any security update.
- You cannot use the /quiet and /forcerestart switches in combination when you install this update.
- After you install this security update, the Remote Desktop Gateway service may not restart automatically. When you try to use the Remote Desktop client to create a remote desktop session, you may receive an error message that resembles the following:Your computer can't connect to the remote computer because the Remote Desktop Gateway server is temporarily unavailable. Try reconnecting later or contact your network administrator for assistance.
If you have any Remote Desktop Services applications that are published by using any UAG trunk, you must manually restart the service by using the Services console.
- If you install this security update on the original RTM version of Forefront Unified Access Gateway, and then you apply Forefront Unified Access Gateway Update 1 or Forefront Unified Access Gateway Update 2, you must install this security update again.
Additional information about this security updateThe following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.
- 2433584 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 1: November 9, 2010
- 2433585 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010: November 9, 2010
- 2418933 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 2: November 9, 2010
Article ID: 2316074 - Last Review: 11/09/2010 18:32:00 - Revision: 1.1
- kbbug kbfix kbsecvulnerability kbsecurity kbsecbulletin atdownload kbexpertiseinter kbsurveynew KB2316074