Microsoft KB Archive/818136

= Web Proxy Service May Crash When It Processes a Redirect Action =

Article ID: 818136

Article Last Modified on 6/14/2007

-

APPLIES TO


 * Microsoft Internet Security and Acceleration Server 2000 Standard Edition
 * Microsoft Internet Security and Acceleration Server 2000 Service Pack 1

-



SYMPTOMS
The Web proxy service (W3proxy.exe) may crash (that is, experience an access violation) when it processes an HTTP redirect action on a site and content rule that denies access.



CAUSE
ISA Server may not include the NULL terminating byte when ISA Server copies the redirect URL to a temporary buffer. Because of this, more HTTP header data may be sent back to the client in the redirect response, and sometimes the Web proxy service may crash.



RESOLUTION
You must install ISA Server Service Pack 1 (SP1) before you install the following hotfix.

For additional information about how to obtain the latest ISA Server service pack, click the article number below to view the article in the Microsoft Knowledge Base:

313139 How to Obtain the Latest Internet Security and Acceleration Server 2000 Service Pack

A supported hotfix is now available from Microsoft. However, this hotfix is intended to correct only the problem that is described in this article. Apply this hotfix only to systems that are experiencing this specific problem. This hotfix might receive additional testing. Therefore, if you are not severely affected by this problem, we recommend that you wait for the next service pack that contains this hotfix.

To resolve this problem, submit a request to Microsoft Online Customer Services to obtain the hotfix. To submit an online request to obtain the hotfix, visit the following Microsoft Web site:

http://go.microsoft.com/?linkid=6294451

Note If additional issues occur or any troubleshooting is required, you might have to create a separate service request. The usual support costs will apply to additional support questions and issues that do not qualify for this specific hotfix. To create a separate service request, visit the following Microsoft Web site:

http://support.microsoft.com/contactus/?ws=support

A supported fix is now available from Microsoft, but it is only intended to correct the problem that is described in this article. Apply it only to computers that are experiencing this specific problem.

To resolve this problem, contact Microsoft Product Support Services to obtain the fix. For a complete list of Microsoft Product Support Services phone numbers and information about support costs, visit the following Microsoft Web site:

http://support.microsoft.com/contactus/?ws=support

NOTE: In special cases, charges that are ordinarily incurred for support calls may be canceled if a Microsoft Support Professional determines that a specific update will resolve your problem. The usual support costs will apply to additional support questions and issues that do not qualify for the specific update in question.

The P1 version of this fix has the file attributes (or later) that are listed in the following table. The dates and times for these files are listed in coordinated universal time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time tool in Control Panel.   Date         Time   Version            Size    File name --  12-Jun-2003  07:37  3.0.1200.276      178,448  Mspadmin.exe 12-Jun-2003 07:37  3.0.1200.276      103,184  Msphlpr.dll 12-Jun-2003 07:36  3.0.1200.276      391,952  W3proxy.exe 12-Jun-2003 07:37  3.0.1200.276      299,280  Wspsrv.exe This fix also applies to the French, German, Spanish, and Japanese versions of ISA Server.



WORKAROUND
To work around this problem, disable the URL redirect action on any site and content rule that denies access to a specific destination.

To disable a redirect action on a site and content rule, follow these steps:
 * 1) In the ISA Server Microsoft Management Console (MMC), expand Servers and Arrays, and then expand the server name.
 * 2) Expand Access Policy, and then click Site and Content Rules.
 * 3) In the Action column, find all site and content rules that redirect to a URL. For example, the action may be &quot;Redirect to: http://www.microsoft.com/isaserver&quot;.
 * 4) In Advanced view, right-click a rule, and then click Properties.
 * 5) On the Action tab, click to clear the If HTTP request, redirect request to this URL: check box.
 * 6) Click OK to close the dialog box.

Repeat these steps for every rule that has a redirect action specified.

Note These steps apply to ISA Standard Edition. The steps for ISA Enterprise Edition may be a little different.



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.



MORE INFORMATION
To set up a site and content rule that denies access and that redirects the request, follow these steps:
 * 1) In the ISA Server MMC, expand Servers and Arrays, and then expand the server name.
 * 2) Expand Access Policy, and then click Site and Content Rules.
 * 3) Create a site and content rule or select an existing rule that you want to configure. In Advanced view, right-click the rule, and then click Properties.
 * 4) Click the Action tab, and then click to select the Denied and the If HTTP request, redirect request to this URL check boxes.
 * 5) In the input that is listed below If HTTP request, redirect request to this URL, type the URL that you want to redirect to (for example, &quot;Redirect to: http://www.microsoft.com/isaserver/&quot;).

Keywords: kbhotfixserver kbqfe kbfix kbbug kbisaserv2000presp2fix KB818136

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.