ccSvcHst.exe crashing with fault 0xc0000005 for module ccEraser.dll

book

Article ID: 156380

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

With Citrix XenApp or XenDesktop and Endpoint Protection 12.1.x you receive a faulting application error for ccSvcHst.exe referencing faulting module ccEraser.dll.

Faulting application name: ccSvcHst.exe, version: 10.2.0.7, time stamp: 0x4e794c48
Faulting module name: ccEraser.dll_unloaded, version: 0.0.0.0, time stamp: 0x4f1a0918
Exception code: 0xc0000005
Fault offset: 0x65cd6df6
Faulting process id: 0xa30
Faulting application start time: 0x01cd08a1b68a6a36
Faulting application path: C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
Faulting module path: ccEraser.dll
Report Id: b8bd7530-7499-11e1-a81e-001dd8b71c04

Cause

This issue is caused by the Citrix mfaphook.dll driver loading into ccSvcHst.exe and causing memory corruption. 

Resolution

Enable intermediate buffering:

https://support.citrix.com/article/CTX126042 
​https://support.citrix.com/article/CTX139627