Unexpected performance improvement.

Hi Guys!

I applyied some patches to my develop IIS 5.0 servers (W2KS), to keep it
secure, and.. now it uses less CPU!!!
How can this be possible? I use my own stress application, serving ISAPI and
ASP pages, and it uses half of CPU than before!!!

This is the list of patchtes applied.

Thanks!

P.

--------------------------------------------------------------------------------------------------

Internet Information Services 5.0 Vulnerability in WebDav XML Message
Handler Could Lead to a Denial of Service (824151)
Bulletin ID: MS04-030
Microsoft Knowledge Base Article: Q824151

Windows 2000 Advanced Server Vulnerability in OLE and COM Could Allow Remote
Code Execution (873333)
Bulletin ID: MS05-012
Microsoft Knowledge Base Article: Q873333

Internet Explorer 6 Cumulative Security Update for Outlook Express (823353)
Bulletin ID: MS04-018
Microsoft Knowledge Base Article: Q823353

Windows 2000 Advanced Server Vulnerability in Utility Manager Could Allow
Code Execution (842526)
Bulletin ID: MS04-019
Microsoft Knowledge Base Article: Q842526

Windows 2000 Advanced Server Vulnerability in POSIX Could Allow Code
Execution (841872)
Bulletin ID: MS04-020
Microsoft Knowledge Base Article: Q841872

Windows 2000 Advanced Server Vulnerability in Task Scheduler Could Allow
Code Execution (841873)
Bulletin ID: MS04-022
Microsoft Knowledge Base Article: Q841873

Windows 2000 Advanced Server Vulnerability in HTML Help Could Allow Code
Execution (840315)
Bulletin ID: MS04-023
Microsoft Knowledge Base Article: Q840315

Windows 2000 Advanced Server Vulnerability in Windows Shell Could Allow
Remote Code Execution (839645)
Bulletin ID: MS04-024
Microsoft Knowledge Base Article: Q839645

Internet Explorer 6 Buffer Overrun in JPEG Processing (GDI+) Could Allow
Code Execution (833987)
Bulletin ID: MS04-028
Microsoft Knowledge Base Article: Q833989

.NET Framework 1.1 Buffer Overrun in JPEG Processing (GDI+) Could Allow Code
Execution (833987)
Bulletin ID: MS04-028
Microsoft Knowledge Base Article: Q830348

Internet Information Services 5.0 Vulnerability in WebDav XML Message
Handler Could Lead to a Denial of Service (824151)
Bulletin ID: MS04-030
Microsoft Knowledge Base Article: Q824151

Windows 2000 Advanced Server Vulnerability in NetDDE Could Allow Remote Code
Execution (841533)
Bulletin ID: MS04-031
Microsoft Knowledge Base Article: Q841533

Windows 2000 Advanced Server Security Update for Microsoft Windows (840987)
Bulletin ID: MS04-032
Microsoft Knowledge Base Article: Q840987

Windows 2000 Advanced Server Vulnerability in Windows Shell Could Allow
Remote Code Execution (841356)
Bulletin ID: MS04-037
Microsoft Knowledge Base Article: Q841356

Windows 2000 Advanced Server Vulnerability in WordPad Could Allow Code
Execution (885836)
Bulletin ID: MS04-041
Microsoft Knowledge Base Article: Q885836

Windows 2000 Advanced Server Vulnerability in HyperTerminal Could Allow Code
Execution (873339)
Bulletin ID: MS04-043
Microsoft Knowledge Base Article: Q873339

Windows 2000 Advanced Server Vulnerabilities in Windows Kernel and LSASS
Could Allow Elevation of Privilege (885835)
Bulletin ID: MS04-044
Microsoft Knowledge Base Article: Q885835

Windows 2000 Advanced Server Vulnerability in HTML Help Could Allow Code
Execution (890175)
Bulletin ID: MS05-001
Microsoft Knowledge Base Article: Q890175

Windows 2000 Advanced Server Vulnerability in Cursor and Icon Format
Handling Could Allow Remote Code Execution (891711)
Bulletin ID: MS05-002
Microsoft Knowledge Base Article: Q891711

Windows 2000 Advanced Server Vulnerability in the Indexing Service Could
Allow Remote Code Execution (871250)
Bulletin ID: MS05-003
Microsoft Knowledge Base Article: Q871250

.NET Framework 1.1 ASP.NET Path Validation Vulnerability (887219)
Bulletin ID: MS05-004
Microsoft Knowledge Base Article: Q886904

Windows 2000 Advanced Server Vulnerability in Windows Shell Could Allow
Remote Code Execution (890047)
Bulletin ID: MS05-008
Microsoft Knowledge Base Article: Q890047

Windows 2000 Advanced Server Vulnerability in the License Logging Service
Could Allow Code Execution (885834)
Bulletin ID: MS05-010
Microsoft Knowledge Base Article: Q885834

Windows 2000 Advanced Server Vulnerability in Server Message Block Could
Allow Remote Code Execution (885250)
Bulletin ID: MS05-011
Microsoft Knowledge Base Article: Q885250

Windows 2000 Advanced Server Vulnerability in OLE and COM Could Allow Remote
Code Execution (873333)
Bulletin ID: MS05-012
Microsoft Knowledge Base Article: Q873333

Windows 2000 Advanced Server Vulnerability in the DHTML Editing Component
ActiveX Control Could Allow Remote Code Execution (891781)
Bulletin ID: MS05-013
Microsoft Knowledge Base Article: Q891781

Internet Explorer 6 Cumulative Security Update for Internet Explorer
(867282)
Bulletin ID: MS05-014
Microsoft Knowledge Base Article: Q867282

Windows 2000 Advanced Server Vulnerability in Hyperlink Object Library Could
Allow Remote Code Execution (888113)
Bulletin ID: MS05-015
Microsoft Knowledge Base Article: Q888113

v-wzhang
Thu Mar 31 02:38:29 CST 2005

Hi Peter,

The patches may be related to IIS are WebDAV, Indexing Service and
ASP.net, but there is lack of information to explain the performance
raising. If there is a typical ASP page which can reproduce the 'half
CPU usage' behavior observably, looking into the code may be helpful
to find a clue.

Thanks.

Best regards,

WenJun Zhang
Microsoft Online Partner Support

This posting is provided "AS IS" with no warranties, and confers no
rights.