FIX: ISA Server stops accepting new requests after you configure Web publishing, Web proxy, or Automatic discovery

This article has been archived. It is offered "as is" and will no longer be updated.
Symptoms
Consider the following scenario:
  • You configure Web publishing, Web proxy, or automatic discovery in Microsoft Internet Security and Acceleration (ISA) Server 2006.
  • A client establishes a TCP session with the corresponding listener.
  • The client violates the TCP state before any data is sent.
In this scenario, ISA Server stops accepting new requests.
Cause
This problem occurs because ISA Server 2006 does not correctly manage TCP states for Web listeners.
Resolution
To resolve this vulnerability, install the hotfix rollup package that the following Microsoft Knowledge Base article describes:
968078 MS09-016: Description of the ISA Server 2006 hotfix package: April 14, 2009
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
More information
The problem only applies when one or more of the following are configured:
  • Web publishing
  • Web proxy
  • Automatic discovery
For more information about this vulnerability, visit the following Microsoft Web sites:For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates
Properties

Article ID: 958951 - Last Review: 01/16/2015 03:21:11 - Revision: 2.0

Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition, Microsoft Internet Security and Acceleration Server 2006 Standard Edition

  • kbnosurvey kbarchive kbexpertiseinter kbsurveynew kbbug kbfix kbqfe KB958951
Feedback