Inetinfo May Generate Access Violation or Heap Check Debug Break Point During Shutdown (264628)


The information in this article applies to:

  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional
This article was previously published under Q264628

SYMPTOMS

Inetinfo may generate an access violation or a heap check debug break point when the IISAdmin service is shutting down. When this problem occurs, either of the following symptoms may occur:
  • An access violation may occur at a random location, caused by an address that had been decremented.
  • If heap validation is enabled, there may be a debug break similar to:
    HEAP[inetinfo.exe]: Invalid Address specified to RtlFreeHeap( 8e0000, 436f10 )
eax=00436f08 ebx=00436f08 ecx=01adf33c edx=01adf0d6 esi=008e0000 edi=00436f08
eip=77fa018d esp=01adf2bc ebp=01adf2c0 iopl=0         nv up ei pl nz na pe nc
cs=001b  ss=0023  ds=0023  es=0023  fs=0038  gs=0000             efl=00000202
ntdll!DbgBreakPoint:
77fa018d cc               int     3
0:014> kb
ChildEBP RetAddr  Args to Child
01adf2b8 77fb6cf6 01adf2d4 77fb5fbe 00436f08 ntdll!DbgBreakPoint
01adf2c0 77fb5fbe 00436f08 008e0000 00436f10 ntdll!RtlpBreakPointHeap+0x26
01adf2d4 77fb5234 008e0000 00436f08 77fb510c ntdll!RtlpValidateHeapEntry+0xd0
01adf34c 77fa762d 008e0000 50000061 00436f10 ntdll!RtlDebugFreeHeap+0xb3
01adf3ec 77fcac40 008e0000 40000060 00436f10 ntdll!RtlFreeHeapSlowly+0x4e
01adf490 6e5a21d8 008e0000 00000000 00436f10 ntdll!RtlFreeHeap+0x53
01adf4a0 6e5a21e2 00436f10 6c7e4280 010a94b0 IisRTL!IisFree+0x12
01adf4a8 6c7e4280 010a94b0 031027b8 00436f00 IisRTL!BUFFER__~BUFFER+0xd
01adf4c4 6c7e4255 010a8f30 010e1c08 010a94b0 metadata!CMDBaseObject__~CMDBaseObject+0x9f
01adf4e0 6c7e4255 010a70a8 004367c0 010a8f30 metadata!CMDBaseObject__~CMDBaseObject+0x74
01adf4fc 6c7e4255 00000000 010a70a8 00000000 metadata!CMDBaseObject__~CMDBaseObject+0x74
01adf518 6c7e664a 69d0a180 00000000 6c7e65f0 metadata!CMDBaseObject__~CMDBaseObject+0x74
01adf524 6c7e65f0 00000000 0028aba0 00000000 metadata!TerminateWorker+0x55
01adf548 6c7e1727 00000000 69d02b63 00436544 metadata!TerminateWorker1+0x6a
01adf550 69d02b63 00436544 00000001 00000000 metadata!CMDCOM__ComMDTerminate+0x7

01adf564 733313c5 010ac950 00000001 00313e68 nsepm!NSEPCOM__ComMDTerminate+0x6d
01adf588 7333127e 0043dda8 733313fe 00313ef0 COADMIN!CADMCOMW__Terminate+0x18b
01adf590 733313fe 00313ef0 77aa9ce5 0043dda8 COADMIN!CADMCOMW__~CADMCOMW+0xe
01adf598 77aa9ce5 0043dda8 00000000 00313e6c COADMIN!CADMCOMW__Release+0x1e
01adf5ac 77aa9661 00313e68 00313e6c 01adf62c ole32!CStdIdentity__ReleaseCtrlUnk+0x3d

CAUSE

This behavior occurs because there are still references to memory that has been deleted, and this memory is accessed at shutdown. The hotfix properly removes all references to this memory before it is deleted.

RESOLUTION

To resolve this problem, obtain the latest service pack for Windows 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

260910 How to Obtain the Latest Windows 2000 Service Pack

The English version of this fix should have the following file attributes or later: 
   Date      Time    Version        Size    File name   
   -----------------------------------------------------
   06/08/00  01:32p  5.0.2195.2096  41,232  Coadmin.dll 
   06/08/00  03:49p  5.0.2195.2096  69,904  Metadata.dll

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Windows 2000 Service Pack 2.

MORE INFORMATION

For additional information about how to install Windows 2000 and Windows 2000 hotfixes at the same time, click the article number below to view the article in the Microsoft Knowledge Base:

249149 Installing Microsoft Windows 2000 and Windows 2000 Hotfixes

Modification Type:MinorLast Reviewed:9/23/2005
Keywords:kbHotfixServer kbQFE kbbug kbfix kbWin2000PreSP2Fix KB264628
©2004 Microsoft Corporation. All rights reserved.