Home > ISA 2006 Configuration, ISA 2006 Enterprise, ISA 2006 General, ISA 2006 Standard > ISA Server 2006 Hotfix Rollup – September 2011

ISA Server 2006 Hotfix Rollup – September 2011

October 5, 2011

A hotfix rollup for Microsoft ISA Server 2006 is now available. The hotfix rollup resolves several reported issues with ISA Server, including:

KB2618727 – Users in remote forests cannot change their passwords through ISA Server 2006.

KB2620088 – Large files become corrupted during file transfer through the Socks v4 client.

KB2620076 – Outlook Web App clients are not timed out after the ISA FBA idle time-out is reached.

KB2620069 – ISA 2006 may crash with the error “DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)”.

KB2622172 – ISA 2006 blocks published website requests for URLs that include carriage returns (CR) or linefeeds (LF).

The latest ISA server 2006 hotfix rollup can be downloaded here. After applying this update, the new ISA Server 2006 build number will be 5.0.5723.526.

  1. February 3, 2012 at 5:14 am

    gran articulo, he leido mediante el traductor de google y me ha resuktado muy bueno

  2. Jonathon
    March 21, 2012 at 4:39 pm

    Hi Richard,

    I have applied this hotfix successfully in an attempt to disable the default behavior of ISA 2006 blocking carriage returns (%0D) in URLs. I also ran the script described in http://support.microsoft.com/kb/2622172.

    ISA is still blocking the URL’s.

    Any suggestions?


  3. April 2, 2012 at 4:34 pm

    This hotfix and script address a very specific issue. Are you certain that ISA is blocking the URLs for this reason? Also, this hotix and script are specifically for published web applications and not outbound (forward) web proxy scenarios. Is that correct in your case?

  4. Jonathon
    April 2, 2012 at 5:27 pm

    Yes the issue is with published web applications (in particular OWA). If you browse to say https://mysite.com/anythinghere you will get to the ISA FBA login page. As soon as you put a %0D in the URL say


    you get a 500 internal server error in your browser and ISA Web Proxy logs show a result code of 12232 for the denied request.

    However since applying the patch if you login to https://mysite.com first then go to the URL with the %0D it works. This is probably an adequate outcome although it is not what I was expecting. Thanks for your help. BTW the offending URLs are generated by SAP.

  5. April 3, 2012 at 7:53 am

    Most interesting. Certainly not the behavior I would expect, but perhaps that is by design.

  6. Armando Valdés
    October 17, 2013 at 5:46 am

    Hello Richard.-

    I can not say when it started to happen, but downloading executable or compressed files, they are downloaded but corrupt. This occurs when using the ISA 2006, when downloading from a TMG the file download is correct. The compression filters have been disabled and applied recently this fix (Article ID: 2616326), without success. I would really appreciate any suggestion in this regard as this is a production ser

    Thanks in advance.

  7. October 17, 2013 at 4:19 pm

    It’s been quite a while since I’ve done anything with ISA 2006. Disabling compression is the first step, but if that isn’t resolving your trouble I’m not sure what to tell you. It may be that upgrading to Forefront TMG 2010 is your only option.

  8. A
    August 6, 2014 at 3:48 am

    There’s a typo here, KB2620088 is referred to by the wrong number (2 was replaced by a 0), this pollutes Google search results. Could you perhaps fix this typo so Google becomes a bit less useless? 🙂

  9. August 7, 2014 at 1:33 pm

    Corrected. Thanks! 🙂

  1. No trackbacks yet.
Comments are closed.