2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1391 | — | — | 0.6% | Dec 31, 2004 | Untrusted execution path vulnerability in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allows local users to execute arbitra... |
| CVE-2004-1394 | — | — | 0.3% | Dec 31, 2004 | The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in ... |
| CVE-2004-0592 | — | — | 2.4% | Dec 31, 2004 | The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when... |
| CVE-2004-1590 | — | — | 1.3% | Dec 31, 2004 | Clientexec allows remote attackers to gain sensitive information via an HTTP request to phpinfo.php, which calls the php... |
| CVE-2004-1389 | — | — | 9.9% | Dec 31, 2004 | Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1... |
| CVE-2004-1390 | — | — | 7.3% | Dec 31, 2004 | Multiple buffer overflows in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allow remote attackers to execute arbitrary code v... |
| CVE-2004-1234 | — | — | 0.5% | Dec 31, 2004 | load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary ... |
| CVE-2004-1393 | — | — | 2.6% | Dec 31, 2004 | Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a de... |
| CVE-2004-1591 | — | — | 1.3% | Dec 31, 2004 | The web interface for Micronet Wireless Broadband Router SP916BM running firmware before 1.9 08/04/2004 resets the passw... |
| CVE-2004-1386 | — | — | 1.8% | Dec 31, 2004 | TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execu... |
| CVE-2004-1043 | — | — | 45.0% | Dec 31, 2004 | Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to execute arbitrary code by using the "Related Topics" ... |
| CVE-2004-1388 | — | — | 68.2% | Dec 31, 2004 | Format string vulnerability in the gpsd_report function for BerliOS GPD daemon (gpsd, formerly pygps) 1.9.0 through 2.7 ... |
| CVE-2004-0806 | — | — | 1.7% | Dec 31, 2004 | cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before execu... |
| CVE-2004-1387 | — | — | 0.5% | Dec 31, 2004 | The check_forensic script in apache-utils package 1.3.31 allows local users to overwrite or create arbitrary files via a... |
| CVE-2004-1587 | — | — | 5.2% | Dec 31, 2004 | Buffer overflow in Monolith games including (1) Alien versus Predator 2 1.0.9.6 and earlier, (2) Blood 2 2.1 and earlier... |
| CVE-2004-1243 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-0909 | — | — | 1.7% | Dec 31, 2004 | Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers ... |
| CVE-2004-1522 | — | — | 1.7% | Dec 31, 2004 | Format string vulnerability in Army Men RTS 1.0 allows remote attackers to cause a denial of service (application crash)... |
| CVE-2004-1523 | — | — | 1.7% | Dec 31, 2004 | Format string vulnerability in the game console in Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers t... |
| CVE-2004-1592 | — | — | 3.1% | Dec 31, 2004 | PHP remote file inclusion vulnerability in index.php in ocPortal 1.0.3 and earlier allows remote attackers to execute ar... |
| CVE-2004-1730 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or ... |
| CVE-2004-1395 | — | — | 3.8% | Dec 31, 2004 | The Lithtech engine, as used in (1) Contract Jack 1.1 and earlier, (2) No one lives forever 2 1.3 and earlier, (3) Tron ... |
| CVE-2004-1382 | — | — | 0.4% | Dec 31, 2004 | The glibcbug script in glibc 2.3.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on t... |
| CVE-2004-1444 | — | — | 8.8% | Dec 31, 2004 | Directory traversal vulnerability in Roundup 0.6.4 and earlier allows remote attackers to view arbitrary files via .. (d... |
| CVE-2004-1383 | — | — | 2.8% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to execute arbitrar... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now