2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1382 | — | — | 0.4% | Dec 31, 2004 | The glibcbug script in glibc 2.3.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on t... |
| CVE-2004-1384 | — | — | 4.0% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inj... |
| CVE-2004-1385 | — | — | 7.3% | Dec 31, 2004 | phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters ... |
| CVE-2004-0931 | — | — | 1.8% | Dec 31, 2004 | MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm ... |
| CVE-2004-0369 | — | — | 4.4% | Dec 31, 2004 | Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Secur... |
| CVE-2004-1343 | — | — | 1.9% | Dec 31, 2004 | CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when a mapping for the current repository does not exi... |
| CVE-2004-1182 | — | — | 1.8% | Dec 31, 2004 | hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate an... |
| CVE-2004-0638 | — | — | 6.6% | Dec 31, 2004 | Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Re... |
| CVE-2004-1179 | — | — | 0.4% | Dec 31, 2004 | The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files ... |
| CVE-2004-1173 | — | — | 11.7% | Dec 31, 2004 | Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in t... |
| CVE-2004-1043 | — | — | 45.0% | Dec 31, 2004 | Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to execute arbitrary code by using the "Related Topics" ... |
| CVE-2004-1386 | — | — | 1.8% | Dec 31, 2004 | TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execu... |
| CVE-2004-1402 | — | — | 3.3% | Dec 31, 2004 | SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string pa... |
| CVE-2004-1166 | — | — | 39.2% | Dec 31, 2004 | CRLF injection vulnerability in Microsoft Internet Explorer 6.0.2800.1106 and earlier allows remote attackers to execute... |
| CVE-2004-0829 | — | — | 3.9% | Dec 31, 2004 | smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPri... |
| CVE-2004-1155 | — | — | 12.6% | Dec 31, 2004 | Internet Explorer 5.01 through 6 allows remote attackers to spoof arbitrary web sites by injecting content from one wind... |
| CVE-2004-0090 | — | — | 1.7% | Dec 31, 2004 | Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has... |
| CVE-2004-1156 | — | — | 1.4% | Dec 31, 2004 | Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting conten... |
| CVE-2004-1150 | — | — | 8.7% | Dec 31, 2004 | Stack-based buffer overflow in the in_cdda.dll plugin for Winamp 5.0 through 5.08c allows attackers to execute arbitrary... |
| CVE-2004-0824 | — | — | 0.6% | Dec 31, 2004 | PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a symlink attack on PPPDia... |
| CVE-2004-0948 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. ... |
| CVE-2004-0825 | — | — | 3.6% | Dec 31, 2004 | QuickTime Streaming Server in Mac OS X Server 10.2.8, 10.3.4, and 10.3.5 allows remote attackers to cause a denial of se... |
| CVE-2004-0325 | — | — | 3.0% | Dec 31, 2004 | TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arg... |
| CVE-2004-0826 | — | — | 22.5% | Dec 31, 2004 | Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitr... |
| CVE-2004-0323 | — | — | 4.1% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain priv... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now