Microsoft has acknowledged that its December 2025 security updates are disrupting Message Queuing (MSMQ) operations on Windows systems. These issues impact business applications and IIS websites across Windows 10 22H2, Windows Server 2019, and Windows Server 2016.
Security Updates and Impacts
Security updates KB5071546, KB5071544, and KB5071543 have led to MSMQ queues remaining inactive and applications being unable to process messages. Users encounter error messages, including "insufficient resources" despite adequate system capabilities. This malfunction stems from alterations to the MSMQ security model, particularly changes to folder permissions in C:\Windows\System32\msmq\storage.
- December 2025 updates impact MSMQ on Windows 10 22H2, Server 2019, Server 2016.
- KB5071546, KB5071544, KB5071543 lead to inactivity in MSMQ queues.
- Resource errors occur due to permission changes in MSMQ storage folder.
- Clustered MSMQ environments, especially under load, are significantly affected.
- Systems where users hold admin rights do not face these issues.
Options and Considerations
Administrators face a dilemma between maintaining security updates and ensuring MSMQ functionality. While rolling back updates can restore operations, it introduces security vulnerabilities such as the critical CVE-2023-21554 bug that exposes systems to remote code execution. Microsoft is investigating the issue but has yet to release a timeline for a resolution. Enterprises must carefully consider the security risks associated with removing these updates.
