Microsoft KB Archive/194337

= XADM: Information Store Crashes Processing Incoming HTML Message from the Internet =

Article ID: 194337

Article Last Modified on 10/28/2006

-

APPLIES TO


 * Microsoft Exchange Server 5.5 Standard Edition

-



This article was previously published under Q194337





SYMPTOMS
When an incoming Internet mail message is being processed during normal operation, the Microsoft Exchange Server information store may terminate unexpectedly and display an access violation error message. If the correct Windows NT and Exchange Server debug symbols are installed, the resulting Dr. Watson log may display a stack dump similar to the following:   FramePtr  RetAddr   Param1   Param2   Param3   Function Name 0c65f458 0086e7c4  0ba14234 0ba14208 ffffffd9 MSVCRT!memcpy+0x3a 0c65f4ac 0089b942  0ba14234 00000400 00003d68 STORE!MdURLCombine+0x944 0c65f514 00879284  00000008 00000000 00000000 STORE!ScHandleAHref+0x302 0c65f5cc 008740d5  0ba140fc 00000000 0ba130b0 STORE!HTMLRTF::ScNInterpret+0x17b4 0c65f5e0 00871ef1  0ba140fc 77f126d1 0b97d940 STORE!HTMLRTF::ScInterpret+0x15 0c65f600 00872363  0c65f628 0081a682 0b97d940 STORE!INPUSH::ScRunConversion+0xe1 0c65f608 0081a682  0b97d940 00000000 0ba175c0 STORE!INPUSH::Commit+0x33 0c65f628 00831c56  0ba00ee8 001708b0 00000000 STORE!CmnBpt::hrCommitBpt+0x72 0c65f670 00805bac  0ba00ee8 0b98cad8 0ba07b28 STORE!CmcvtrBptEnd::hrExtract+0x426 0c65f6ac 0083e4b9  0c65f6c8 00000000 0c65f6c8 STORE!CINETextr::hrExtract+0x16c 0c65f6cc 0083e2ce  0ba23088 00003d68 00401cb0 STORE!CConvertStream::HrFlush+0x39 0c65f6fc 005ae66a  0b941020 00000000 00000000 STORE!CConvertStream::Commit+0x9e 0c65f71c 005a79ee  0ba231b8 00003a12 00000000 STORE!CSTREAM::HrCommit+0x5a 0c65f758 0045c442  00003a12 0ba231b8 0c65f784 STORE!EcWriteStreamOp+0x16e 0c65f788 0044ed99  00000001 00000057 00000001 STORE!EcWriteStream+0xc2 0c65f894 0046638d  0c65f90c 00003e00 0c65f92c STORE!EcRpc+0x1e79 0c65f928 77e11841  001714a0 0ba23088 0017cd90 STORE!EcDoRpc+0xdd 0c65f948 77e52265  004662b0 0c65fb3c 00000004 RPCRT4!Invoke+0x28 0c65f964 77e52236  004662b0 0c65fb3c 00000004 RPCRT4!NdrCallServerManager+0x15 0c65fc28 77e51f9e  00000000 00000000 0c65fe08 0x77e52236 0c65fc40 77e1134f  0c65fe08 0c65fe08 0016f008 RPCRT4!NdrServerCall+0x19 0c65fc7c 77e11122  008c071a 0c65fe08 0c65fdc4 RPCRT4!DispatchToStubInC+0x34



CAUSE
Processing an incoming Internet Mail message in Hypertext Markup Language (HTML) format, the information store processes each hypertext reference (HREF) in the message to determine whether it is an absolute or relative Uniform Resource Locator (URL). As a part of this process to determine whether the HREF is relative or absolute, the information store initially sets two pointers (one for relative and one for absolute) and expects them to be equal at a latter point in the process. In this case, a leading white space was part of the HREF and the information store stripped it off the value pointing to the relative reference only. This renders the values of the two pointers different and causes the information store to skip a part of the processing needed to properly handle this HREF. Because of skipping this part of the processing, the information store overwrites portions of other pointers leading to an access violation error and the process terminating abnormally.

The information store now sets a flag to ensure these pointers are the same before modifying the value of the relative pointer in any way.



RESOLUTION
To resolve this problem, obtain the latest service pack for Exchange Server version 5.5. For more information, please see the following article in the Microsoft Knowledge Base:

191014 XGEN: How to Obtain the Latest Exchange Server 5.5 Service Pack

The English version of this fix should have the following file attributes or later:

Component: Information Store

  File Name    Version ---  Gapi32.dll   5.5.2425.0 Mdbmsg.dll  5.5.2425.0 Store.exe   5.5.2425.0



STATUS
Microsoft has confirmed this to be a problem in Microsoft Exchange Server version 5.5.

Additional query words: crash hang GPF

Keywords: kbhotfixserver kbqfe kbbug kbfix kbqfe KB194337

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.