Breaking Message Queuing (MSMQ) Functionality Affects IIS Sites

Breaking Message Queuing (MSMQ) Functionality Affects IIS Sites

Posted on By CWS

Microsoft’s December 2025 safety updates have unleashed an surprising headache for enterprise admins counting on Message Queuing (MSMQ).

Put in by way of KB5071546 on December 9, the patch focusing on OS Construct 19045.6691 alters MSMQ’s safety mannequin, resulting in widespread failures in queue operations.

Confirmed on December 12, the difficulty is most extreme in high-load clustered environments, inflicting queues to grow to be inactive and IIS-hosted websites to crash with cryptic “Inadequate assets” errors.

This glitch surfaced quickly post-Patch Tuesday, affecting legacy however vital MSMQ-dependent apps in finance, healthcare, and logistics sectors.

Customers report functions grinding to a halt and being unable to jot down messages, regardless of ample disk house and RAM. The fallout disrupts real-time messaging workflows, forcing IT groups into frantic firefighting.

MSMQ Performance Damaged

Admins face a cascade of failures:

MSMQ queues go dormant, blocking message circulate.

IIS websites throw “Inadequate assets to carry out operation” exceptions.

Failed writes yield errors like “The message file ‘C:WindowsSystem32msmqstorage*.mq’ can’t be created.”

Logs misleadingly blame “inadequate disk house or reminiscence.”

These stem from tightened NTFS permissions on the C:WindowsSystem32MSMQstorage folder. Publish-update, non-admin MSMQ customers lack write entry, clashing with the service’s expectations and triggering resource-denied halts.

PlatformVersions AffectedClientWindows 10, model 22H2ServerWindows Server 2019Windows Server 2016

Microsoft acknowledges the foundation trigger ties to MSMQ safety hardening, now below investigation. No fast workaround exists, however groups counsel verifying folder permissions or pausing MSMQ in clusters till a repair drops. “We are going to present extra data quickly,” the advisory states.

For now, maintain off on KB5071546 in MSMQ-heavy setups or take a look at in staging. This joins a string of Patch Tuesday surprises, underscoring the dangers of auto-updates in mission-critical Home windows ecosystems.

Observe us on Google Information, LinkedIn, and X for day by day cybersecurity updates. Contact us to characteristic your tales.

Cyber Security News Tags:, , , , , , ,

Related Posts

Chinese Hackers Exploit SAP RCE Vulnerability to Upload Supershell Backdoors Chinese Hackers Exploit SAP RCE Vulnerability to Upload Supershell Backdoors Cyber Security News
3 Key Benefits For SOCs And MSSPs  3 Key Benefits For SOCs And MSSPs  Cyber Security News
MuddyWater Hackers Using UDPGangster Backdoor to Attack Windows Systems Evading Network Defenses MuddyWater Hackers Using UDPGangster Backdoor to Attack Windows Systems Evading Network Defenses Cyber Security News
CISA Warns of Critical VMware vCenter RCE Vulnerability Now Exploited in Attacks CISA Warns of Critical VMware vCenter RCE Vulnerability Now Exploited in Attacks Cyber Security News
Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution Cyber Security News
Cybersecurity News Weekly Newsletter – Fortinet, Chrome 0-Day Flaws, Cloudflare Outage and Salesforce Gainsight Breach Cybersecurity News Weekly Newsletter – Fortinet, Chrome 0-Day Flaws, Cloudflare Outage and Salesforce Gainsight Breach Cyber Security News