Unrated severityNVD Advisory· Published Oct 6, 2005· Updated Jun 16, 2026

CVE-2005-3177

Description

CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descriptors do not satisfy certain NTFS conventions, which could cause ACLs for some files to be reverted to less secure defaults, or cause security descriptors to be removed.

Affected products

Microsoft/Windows 20002 versions
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
- (no CPE)range: SP4 before Update Rollup 1
Microsoft/Windows Server 20032 versions
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
- (no CPE)
Microsoft/Windows Xp2 versions
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
- (no CPE)

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.microsoft.com/kb/831374nvdPatchVendor Advisory
support.microsoft.com/kb/831375nvdPatchVendor Advisory
support.microsoft.com/kb/900345nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000