2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1067 | — | — | 5.2% | Jan 10, 2005 | Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, wh... |
| CVE-2004-1134 | — | — | 72.3% | Jan 10, 2005 | Buffer overflow in the Microsoft W3Who ISAPI (w3who.dll) allows remote attackers to cause a denial of service and possib... |
| CVE-2004-1192 | — | — | 11.7% | Jan 10, 2005 | Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute ar... |
| CVE-2004-1197 | — | — | 1.5% | Jan 10, 2005 | Cross-site scripting (XSS) vulnerability in inshop.pl in Insite inShop allows remote attackers to inject arbitrary web s... |
| CVE-2004-1204 | — | — | 0.3% | Jan 10, 2005 | FluxBox 0.9.10 and earlier versions allows local users to cause a denial of service (application crash) by calling Xman ... |
| CVE-2004-1064 | — | — | 3.7% | Jan 10, 2005 | The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the real... |
| CVE-2004-1063 | — | — | 4.2% | Jan 10, 2005 | PHP 4.x to 4.3.9, and PHP 5.x to 5.0.2, when running in safe mode on a multithreaded Unix webserver, allows local users ... |
| CVE-2004-1130 | — | — | 1.3% | Jan 10, 2005 | Cross-site scripting (XSS) vulnerability in admin.asp in CMailServer 5.2 allows remote attackers to execute arbitrary we... |
| CVE-2004-1129 | — | — | 1.9% | Jan 10, 2005 | SQL injection vulnerability in (1) fdelmail.asp, (2) addressc.asp, and possibly (3) postmail.asp and (4) fmvmail.asp in ... |
| CVE-2004-1187 | — | — | 5.2% | Jan 10, 2005 | Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use th... |
| CVE-2004-1190 | — | — | 0.4% | Jan 10, 2005 | SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that h... |
| CVE-2004-1127 | — | — | 14.6% | Jan 10, 2005 | Buffer overflow in Open Dc Hub 0.7.14 allows remote attackers, with administrator privileges, to execute arbitrary code ... |
| CVE-2004-1125 | — | — | 6.6% | Jan 10, 2005 | Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-b... |
| CVE-2004-1177 | — | — | 1.8% | Jan 10, 2005 | Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject ... |
| CVE-2004-1120 | — | — | 14.6% | Jan 10, 2005 | Multiple buffer overflows in (1) http.c, (2) http-retr.c, (3) main.c and other code that handles network protocols in Pr... |
| CVE-2004-0953 | — | — | 10.2% | Jan 10, 2005 | Buffer overflow in the C2S module in the open source Jabber 2.x server (Jabberd) allows remote attackers to cause a deni... |
| CVE-2004-1128 | — | — | 5.0% | Jan 10, 2005 | Buffer overflow in CMailCOM.dll in CMailServer 5.2 allows remote attackers to execute arbitrary code via an attachment w... |
| CVE-2004-0949 | — | — | 2.6% | Jan 10, 2005 | The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle t... |
| CVE-2004-1065 | — | — | 10.0% | Jan 10, 2005 | Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to e... |
| CVE-2004-1122 | — | — | 2.3% | Jan 10, 2005 | Safari 1.x to 1.2.4, and possibly other versions, allows inactive windows to launch dialog boxes, which can allow remote... |
| CVE-2004-1119 | — | — | 17.3% | Jan 10, 2005 | Stack-based buffer overflow in IN_CDDA.dll in Winamp 5.05, and possibly other versions including 5.06, allows remote att... |
| CVE-2004-1123 | — | — | 1.3% | Jan 10, 2005 | Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (serv... |
| CVE-2004-0956 | — | — | 3.7% | Jan 10, 2005 | MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query w... |
| CVE-2004-1188 | — | — | 2.0% | Jan 10, 2005 | The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does n... |
| CVE-2004-1205 | — | — | 1.7% | Jan 10, 2005 | codebrowserpntm.php in PnTresMailer 6.03 allows remote attackers to gain sensitive information via an invalid filetohigh... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now