Solved

IIS with Outlook Web Access on Exchange 5.5 consistently crashes when accessed by Mozilla Firefox browser

Posted on 2004-10-08
3
339 Views
Last Modified: 2008-02-26
I have 2 servers running IIS 4 and 5, both running Outlook Web Access for Exchange 5.5

When either of these servers is hit with a Mozilla Firefox browser, after the user logs on and sometimes gets a single message view, the following errors occurs and the Outlook Web Access fails to operate until a reboot has been performed. Trying to restart the services fails.

These 4 errors show up in Event Viewer

Service Control Manager
Event ID: 7031
The IIS Admin Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1 milliseconds: Run the configured recovery program.

Service Control Manager
Event ID: 7031
The World Wide Web Publishing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: No action.

IISCTLS
Event ID: 2
IIS stop command received from user NT AUTHORITY\SYSTEM. The logged data is the status code.
For additional information specific to this message please visit the Microsoft Online Support site located at: http://www.microsoft.com/contentredirect.asp.

IISCTLS
Event ID: 1
IIS start command received from user NT AUTHORITY\SYSTEM. The logged data is the status code.
For additional information specific to this message please visit the Microsoft Online Support site located at: http://www.microsoft.com/contentredirect.asp.

There is an article dealing with 7031 titled "Antivirus software may cause IIS to stop unexpectedly" ( http://support.microsoft.com/default.aspx?scid=kb;en-us;821749&Product=iis50 ) however, I've never encountered this before hitting the site with Firefox.

I am running Norton Antivirus Corporate 8.x and having it scan the IMC directories to take the load off the Norton Antivirus for Exchange which scans the Information Store. NAV Corporate is not scanning the actual Exchange directories.

I'd hate to have to remove my working antivirus solution, but having the OWA crash every time someone uses Firefox is unacceptable.

Any idea how to fix this, or alternately, having the server detect firefox browsers and redirect them to a page telling them to use IE would be ok I suppose (but surely not optimal). I can test later whether turning off antivirus allows FireFox to work properly, but not until the weekend when I have more freedom to reboot this production mail server.

Thanks,
0
Comment
Question by:EvilOtto
3 Comments
 
LVL 2

Author Comment

by:EvilOtto
ID: 12299796
I believe this is related to security bulletin Microsoft Security Bulletin MS04-030 - Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service (824151) located here: http://www.microsoft.com/technet/security/bulletin/MS04-030.mspx
Issued: October 12, 2004

Summary
Who should read this document: Customers who use Microsoft® Windows®
Impact of Vulnerability:  Denial of Service
Maximum Severity Rating: Important
Recommendation: Customers should install the update at the earliest opportunity.

I've installed the patch and will wait and see if it stops the service(s) from crashing.
0
 

Accepted Solution

by:
modulo earned 0 total points
ID: 13403713
PAQed with points refunded (375)

modulo
Community Support Moderator
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
A phishing scam that claims a recipient’s credit card details have been “suspended” is the latest trend in spoof emails.
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question