Event ID | 167 |
Source | Symantec AntiVirus/Filtering for Exchange 2000 |
Description | The process <process> terminated unexpectedly |
Event Information | "This information from some newsgroups may help you: ------------------------------------------------------------------------------ The error may occur when replicating the Public Folders between Exchange 5.5 and Exchange 2000 Servers. According to Symantec the solution is to reconfigure the Client Permissions in order to successfully replicate in a nonnative environment. To reconfigure your Client Permissions: 1. Remove the replicated Public Folders. 2. Adjust the Client Permissions so that no Security Distribution Groups are assigned permissions to any of your Public Folders. 3. Re-replicate the folders. ------------------------------------------------------------------------------ According to Symantec: ------------------------------------------------------------------------------ Situation:Buffer overflow causes a problem when a Symantec Mail Security for Microsoft Exchange product terminates. The scan process (SAVFMSESp.exe) to terminate unexpectedly and restart. Event ID 167,appear in the Windows Application Event log. If you enable VSAPI debug logging from the debug.asp page, the issue does not occur. Solution:Symantec Mail Security for Microsoft Exchange 4.0 build 461 had a fix for this problem. All newer builds contain this fix. An alternate source for this buffer overflow is not setting exclusions correctly when a Symantec Corporate Edition product is also installed. The exclusions should include the Mail Security temp folder. ------------------------------------------------------------------------------ " |
Reference Links | Buffer overflow causes the scan process (SAVFMSESp.exe) to terminate unexpectedly and restart |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.