Unrated severityNVD Advisory· Published Oct 6, 2005· Updated Jun 16, 2026

CVE-2005-3174

Description

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows users to log on to the domain, even when their password has expired, if the fully qualified domain name (FQDN) is 8 characters long.

Affected products

Microsoft/Windows 20002 versions
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
- (no CPE)range: before Update Rollup 1 for SP4

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.microsoft.com/kb/830847nvdPatchVendor Advisory
support.microsoft.com/kb/900345nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000