2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-0187Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-0185. Reason: This candidate is a reservation ...
CVE-2004-0159Format string vulnerability in hsftp 1.11 allows remote authenticated users to cause a denial of service and possibly ex...
CVE-2004-0165Format string vulnerability in Point-to-Point Protocol (PPP) daemon (pppd) 2.4.0 for Mac OS X 10.3.2 and earlier allows ...
CVE-2004-0166Unknown vulnerability in Safari web browser for Mac OS X 10.2.8 related to "the display of URLs in the status bar."
CVE-2004-0167DiskArbitration in Mac OS X 10.2.8 and 10.3.2 does not properly initialize writeable removable media.
CVE-2004-0168Unknown vulnerability in CoreFoundation for Mac OS X 10.3.2, related to "notification logging."
CVE-2004-0169QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via...
CVE-2004-0171FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exha...
CVE-2004-0172Heap-based buffer overflow in the search_for_command function of ltrace 0.3.10, if it is installed setuid, could allow l...
CVE-2004-0185Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to ca...
CVE-2004-0186smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting ...
CVE-2004-0188Heap-based buffer overflow in Calife 2.8.5 and earlier may allow local users to execute arbitrary code via a long passwo...
CVE-2004-0189The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass url_regex ACLs via a U...
CVE-2004-0190Symantec FireWall/VPN Appliance model 200 records a cleartext password for the password administration page, which may b...
CVE-2004-0191Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to in...
CVE-2004-0192Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attac...
CVE-2004-0193Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network ...
CVE-2004-0093XFree86 4.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an out-of-bou...
CVE-2004-0110Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remot...
CVE-2004-1358The patches (1) 114332-08 and (2) 114929-06 for Sun Solaris 9 disable the auditing functionality of the Basic Security M...
CVE-2004-1770The login page for cPanel 9.1.0, and possibly other versions, allows remote attackers to execute arbitrary code via shel...
CVE-2004-1769The "Allow cPanel users to reset their password via email" feature in cPanel 9.1.0 build 34 and earlier, including 8.x, ...
CVE-2004-1359Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uu...
CVE-2004-0143Multiple vulnerabilities in Nokia 6310(i) Mobile phones allow remote attackers to cause a denial of service (reset) via ...
CVE-2004-0114The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and O...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now