CVE-2005-3177

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 before Update Rollup 1 for SP4 Microsoft Windows XP Microsoft Windows Server 2003

Description The issue arises when CHKDSK runs in fix mode and encounters a large number of files in the master file table or security descriptors that do not meet certain NTFS conventions. This could lead to Access Control Lists (ACLs) for some files being reverted to less secure defaults, or the removal of security descriptors.

Recommendations For Microsoft Windows 2000 before Update Rollup 1 for SP4, apply Update Rollup 1 for SP4 to resolve the issue. For Microsoft Windows XP, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003, update to a version that includes the fix for this issue.