Installing KB2756920 (MS13-004) on Windows Server 2008 R2 RTM breaks SharePoint 2010

If you are running SharePoint 2010 on Windows Server 2008 R2 RTM, installing MS13-004 (KB2756920) will break the Security Token Service with an error similar to the below:

KB2756920 removes the following two methods in System.ServiceModel.Activation.Iis7Helper:

The above exception calls out the top missing method.  If you are running Windows Server 2008 R2 RTM, I would recommend upgrading to 2008 R2 SP1.  If that is not possible, removing KB2756920 will also resolve this particular issue, but will leave the server open to the vulnerability resolved by MS13-004.

Update: Windows Server 2008 SP2 is also not affected by this issue.

Update 2: Installing KB2637518 on Windows Server 2008 R2 RTM looks to resolve the WCF issues with the Security Token Service.

Update 3: There is now a KB on this issue, KB2801728.

One Comment

  1. Pingback: SharePoint 2010 Server: Security Token Service stops working after installing KB 2756920 – Tim Raines Blog

Leave a Reply