2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0821 | — | — | 0.4% | Dec 31, 2004 | The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow loc... |
| CVE-2004-0826 | — | — | 22.5% | Dec 31, 2004 | Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitr... |
| CVE-2004-1186 | — | — | 4.0% | Dec 31, 2004 | Multiple buffer overflows in enscript 1.6.3 allow remote attackers or local users to cause a denial of service (applicat... |
| CVE-2004-0533 | — | — | 0.7% | Dec 31, 2004 | Business Objects WebIntelligence 2.7.0 through 2.7.4 only enforces access controls on the client, which allows remote au... |
| CVE-2004-0817 | — | — | 4.9% | Dec 31, 2004 | Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via... |
| CVE-2004-1330 | — | — | 1.2% | Dec 31, 2004 | Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username. |
| CVE-2004-1332 | — | — | 9.5% | Dec 31, 2004 | Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attacke... |
| CVE-2004-0813 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the SG_IO functionality in ide-cd allows local users to bypass read-only access and perform una... |
| CVE-2004-0811 | — | — | 6.8% | Dec 31, 2004 | Unknown vulnerability in Apache 2.0.51 prevents "the merging of the Satisfy directive," which could allow attackers to o... |
| CVE-2004-1179 | — | — | 0.4% | Dec 31, 2004 | The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files ... |
| CVE-2004-1173 | — | — | 11.7% | Dec 31, 2004 | Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in t... |
| CVE-2004-1182 | — | — | 1.8% | Dec 31, 2004 | hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate an... |
| CVE-2004-0808 | — | — | 5.4% | Dec 31, 2004 | The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows... |
| CVE-2004-0984 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to ... |
| CVE-2004-1189 | — | — | 0.7% | Dec 31, 2004 | The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a p... |
| CVE-2004-1400 | — | — | 7.2% | Dec 31, 2004 | The control panel in ASP Calendar does not require authentication to access, which allows remote attackers to gain unaut... |
| CVE-2004-0090 | — | — | 1.7% | Dec 31, 2004 | Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has... |
| CVE-2004-1156 | — | — | 1.4% | Dec 31, 2004 | Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting conten... |
| CVE-2004-0997 | — | — | 0.4% | Dec 31, 2004 | Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain ... |
| CVE-2004-0325 | — | — | 3.0% | Dec 31, 2004 | TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arg... |
| CVE-2004-1155 | — | — | 12.6% | Dec 31, 2004 | Internet Explorer 5.01 through 6 allows remote attackers to spoof arbitrary web sites by injecting content from one wind... |
| CVE-2004-1327 | — | — | 4.4% | Dec 31, 2004 | Buffer overflow in Crystal FTP Client 2.8 allows remote malicious servers to execute arbitrary code via a response to a ... |
| CVE-2004-0323 | — | — | 4.1% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain priv... |
| CVE-2004-1144 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. |
| CVE-2004-1146 | — | — | 1.4% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in (1) main.c and (2) login.c for CVSTrac before 1.1.5 allow remote ... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now