2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1014 | — | — | 2.4% | Jan 10, 2005 | statd in nfs-utils 1.257 and earlier does not ignore the SIGPIPE signal, which allows remote attackers to cause a denial... |
| CVE-2004-1015 | — | — | 5.2% | Jan 10, 2005 | Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remo... |
| CVE-2004-1016 | — | — | 1.0% | Jan 10, 2005 | The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to... |
| CVE-2004-1267 | — | — | 6.3% | Jan 10, 2005 | Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attac... |
| CVE-2004-1228 | — | — | 1.2% | Jan 10, 2005 | The install scripts in SugarCRM Sugar Sales 2.0.1c and earlier are not removed after installation, which allows attacker... |
| CVE-2004-1254 | — | — | 10.4% | Jan 10, 2005 | WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing ... |
| CVE-2004-1268 | — | — | 0.5% | Jan 10, 2005 | lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt th... |
| CVE-2004-1270 | — | — | 0.5% | Jan 10, 2005 | lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lpp... |
| CVE-2004-1275 | — | — | 6.0% | Jan 10, 2005 | Buffer overflow in the remove_quote function in convert.c for html2hdml 1.0.3 allows remote attackers to execute arbitra... |
| CVE-2004-1318 | — | — | 1.9% | Jan 6, 2005 | Cross-site scripting (XSS) vulnerability in namazu.cgi for Namazu 2.0.13 and earlier allows remote attackers to inject a... |
| CVE-2004-1183 | — | — | 3.9% | Jan 6, 2005 | Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of serv... |
| CVE-2004-1061 | — | — | 1.0% | Jan 4, 2005 | Cross-site scripting (XSS) vulnerability in Bugzilla before 2.18, including 2.16.x before 2.16.11, allows remote attacke... |
| CVE-2004-1312 | — | — | 2.5% | Jan 3, 2005 | A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote ... |
| CVE-2004-0824 | — | — | 0.6% | Dec 31, 2004 | PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a symlink attack on PPPDia... |
| CVE-2004-1155 | — | — | 12.6% | Dec 31, 2004 | Internet Explorer 5.01 through 6 allows remote attackers to spoof arbitrary web sites by injecting content from one wind... |
| CVE-2004-0825 | — | — | 3.6% | Dec 31, 2004 | QuickTime Streaming Server in Mac OS X Server 10.2.8, 10.3.4, and 10.3.5 allows remote attackers to cause a denial of se... |
| CVE-2004-0138 | — | — | 0.4% | Dec 31, 2004 | The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service (crash) via a crafted E... |
| CVE-2004-1156 | — | — | 1.4% | Dec 31, 2004 | Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting conten... |
| CVE-2004-1150 | — | — | 8.7% | Dec 31, 2004 | Stack-based buffer overflow in the in_cdda.dll plugin for Winamp 5.0 through 5.08c allows attackers to execute arbitrary... |
| CVE-2004-0821 | — | — | 0.4% | Dec 31, 2004 | The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow loc... |
| CVE-2004-0826 | — | — | 22.5% | Dec 31, 2004 | Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitr... |
| CVE-2004-1143 | — | — | 1.6% | Dec 31, 2004 | The password generation in mailman before 2.1.5 generates only 5 million unique passwords, which makes it easier for rem... |
| CVE-2004-1144 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. |
| CVE-2004-1141 | — | — | 2.5% | Dec 31, 2004 | The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service (application c... |
| CVE-2004-1140 | — | — | 2.5% | Dec 31, 2004 | Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (application hang) and possibly fill ... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now