2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1200 | — | — | 2.2% | Dec 31, 2004 | Firefox and Mozilla allow remote attackers to cause a denial of service (application crash from memory consumption), as ... |
| CVE-2004-1458 | — | — | 1.8% | Dec 31, 2004 | The CSAdmin web administration interface for Cisco Secure Access Control Server (ACS) 3.2(2) build 15 allows remote atta... |
| CVE-2004-1463 | — | — | 2.3% | Dec 31, 2004 | Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknow... |
| CVE-2004-1473 | — | — | 3.9% | Dec 31, 2004 | Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 36... |
| CVE-2004-1518 | — | — | 2.3% | Dec 31, 2004 | SQL injection vulnerability in follow.php in Phorum 5.0.12 and earlier allows remote authenticated users to execute arbi... |
| CVE-2004-1452 | — | — | 0.4% | Dec 31, 2004 | Tomcat before 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes ... |
| CVE-2004-1296 | — | — | 0.3% | Dec 31, 2004 | The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink... |
| CVE-2004-1453 | — | — | 0.4% | Dec 31, 2004 | GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use... |
| CVE-2004-0985 | — | — | 20.2% | Dec 31, 2004 | Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a docum... |
| CVE-2004-1451 | — | — | 1.4% | Dec 31, 2004 | Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote ... |
| CVE-2004-1454 | — | — | 3.4% | Dec 31, 2004 | Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First (OSPF) enabled, allows remote attackers to cause a denial... |
| CVE-2004-1448 | — | — | 1.7% | Dec 31, 2004 | Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to uploa... |
| CVE-2004-1449 | — | — | 0.9% | Dec 31, 2004 | Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of ... |
| CVE-2004-1450 | — | — | 1.2% | Dec 31, 2004 | Unknown vulnerability in LiveConnect in Mozilla 1.7 beta allows remote attackers to read arbitrary files in known locati... |
| CVE-2004-1455 | — | — | 4.2% | Dec 31, 2004 | Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and earlier allows remote attackers to execute arbitrar... |
| CVE-2004-0984 | — | — | 0.4% | Dec 31, 2004 | Unknown vulnerability in the dotlock implementation in mailutils before 1:0.5-4 on Debian GNU/Linux allows attackers to ... |
| CVE-2004-1456 | — | — | 14.0% | Dec 31, 2004 | filediff in CVStrac allows remote attackers to execute arbitrary commands via shell metacharacters in rcsinfo. |
| CVE-2004-1236 | — | — | 8.9% | Dec 31, 2004 | Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allow... |
| CVE-2004-1475 | — | — | 8.4% | Dec 31, 2004 | Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arbitrary code via (1) ... |
| CVE-2004-1517 | — | — | 1.6% | Dec 31, 2004 | Zone Labs IMsecure and IMsecure Pro before 1.5 allow remote attackers to bypass Active Link Filtering via an instant mes... |
| CVE-2004-1519 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in bug.php in phpBugTracker 0.9.1 allows remote attackers to execute arbitrary SQL commands ... |
| CVE-2004-0592 | — | — | 2.4% | Dec 31, 2004 | The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when... |
| CVE-2004-0979 | — | — | 4.2% | Dec 31, 2004 | Internet Explorer on Windows XP does not properly modify the "Drag and Drop or copy and paste files" setting when the us... |
| CVE-2004-1198 | — | — | 1.7% | Dec 31, 2004 | Microsoft Internet Explorer allows remote attackers to cause a denial of service (application crash from memory consumpt... |
| CVE-2004-0931 | — | — | 1.8% | Dec 31, 2004 | MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm ... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now