After some hunting, I narrowed the culprit down to the Nvida graphics drivers post version 169.39. Driver Release 175.16 was the first to show the issue, 175.19 made it worse.

My solution at the time roll back 169.19 and sacrifice some of the support for my CUDA enabled cards.  Last week I took the plunge and went for 178.13, which while resolving some other issues still broke the Remote desktop functionality.

The solution appears to be a tweek is needed in ones registry.

1. Start, Run, type regedit and press OK
2. Navigate to the Key: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management]
3. Right click in the Details pane and Select New –> DWORD Value
4. Name it  SessionImageSize
5. After it is created, double click on it and change its value to: 20 ( this is based on recommendations from here) and effectively maps to raising the session memory to 32 MB.
6. Save and Reboot

I tried this and no luck.  For my particular configuration SLI motherboards with Running 3 heads ofa 7600GT and 7300GS, I needed to raise the SessionImageSize value to 41 implying the use of 64MB of memory.  I’m not sure if this is due to the large amount of ram in the system ( 4gigs) or the particular use of two non SLI’d cards. the ‘default’ value of 20 seems to have solved the problem on my other Intel based system running a single  8500GT.

Microsoft take on the issue  is contained in KB886212 which proposes the solution of try another driver or rollback the driver.

Searching for “SessionImageSize” in the Microsoft knowledge base doesn’t seem to help either

Its worth nothign that the problem is occuring across different chipsets, Graphics cards, and on both SP2 and SP3 systems. The fix of increating the SessionImageSize to 0×41 seems to be working fine on a Windows Server 2003 (SP2) system as well.

I’ve been patiently waiting for three years to catch a new worm on my telescopes, so I I’m ready and waiting.

Windows 2000, XP and Server 2003 are all listed as critical targets, with Vista and Server 2008 being vulnerable as well, but potentially able to limit the damage due to their newer some what more modular and layered security design.  For Operating systems other than the latter two, this release also effectively updates MS06-040

Christopher Budd from the Microsoft Security Response Center has a nice little writeup about it, with further details on the Official release notes for MS08-67. Also from a Microsoft Perspective, Michael from the Security Develoment Lifcycle has a nice piece titled MS08-067 and the SDL in which he actually explains the bug itself.

Microsoft have also gone as far as to provide a webcast on the subject.

Update: Infosec blogspace is all a twitter with this.  I’ll add relecant content as I find it.

For some time my Laptop and Desktop XP systems have been misbehaving, intermittently when going into hibernate, the desktop much more since it got its upgrade to 4 gigs of Ram. Symptoms include just going blank with heaps of hard disk activity and then just sitting with the HDD light flickering, or stating that there are insufficient resources available — despite heaps of free disk space on the system drive.The other evening I had ad enough and went on a hunt for a potential solution other than the “re-install windows” solution.

This was particularly irritating when the laptop failed to hibernate, and you get home to find a rather warm laptop bag. The other problem being in light of the joyous power cuts we have been experiencing, my UPS software is configured to hibernate on power fail rather than shut down something which wasn’t happening and the UPS batteries were ending up draining. After trying the logical solutions of enable/disable hibernate, defrag the drive, removing the hiberfile.sys, rinse repeat etc. with no tangible effect it was time to look elsewhere.

The solution

The solution was surprisingly simple once I got the right sequence of terms plugged into Google. Microsoft has published a hotfix (Microsoft KB 909095) for exactly this issue. Although billed as:

The computer occasionally does not hibernate and you receive an “Insufficient System Resources Exist to Complete the API” error message in Windows XP with Service Pack 2, in Windows XP Tablet PC Edition 2005, or in Windows XP Media Center Edition 2005

It installs fine on any XP SP2 system, as stated further down in the Microsoft page. With some trepidation I applied to my desktop fully expecting a warning or complaint – none occurred. A reboot later I had hibernate working perfectly again. The cause of the problem is :

To prepare the computer to hibernate, the Windows kernel power manager requires a block of contiguous memory. The size of this contiguous memory is proportional to the number of physical memory regions that the computer is using. A computer that uses lots of RAM is likely to use more physical memory regions when the computer prepares to hibernate. Therefore, a larger amount of contiguous memory is required to prepare the computer to hibernate.

Additionally, the number of physical memory regions varies according to the programs, services, and device drivers that the computer uses. Therefore, the hibernate feature occasionally fails.

What I found interesting is that both systems are up to date, and I’ve never been offered this in any of the Windows update sessions, despite the hotfix being available since August 2006!