Unrated severityNVD Advisory· Published Oct 6, 2005· Updated Jun 16, 2026

CVE-2005-3172

Description

The WideCharToMultiByte function in Microsoft Windows 2000 before Update Rollup 1 for SP4 does not properly convert strings with Japanese composite characters in the last character, which could prevent the string from being null terminated and lead to data corruption or enable buffer overflow attacks.

Affected products

Microsoft/Windows 20002 versions
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
- (no CPE)range: <= SP4

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.microsoft.com/kb/824867nvdPatchVendor Advisory
support.microsoft.com/kb/900345nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000