2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1491 | — | — | 12.6% | Dec 31, 2004 | Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitr... |
| CVE-2004-1173 | — | — | 11.7% | Dec 31, 2004 | Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in t... |
| CVE-2004-1404 | — | — | 2.9% | Dec 31, 2004 | Attachment Mod 2.3.10 module for phpBB, when used with Apache mod_mime, does not properly handle files with multiple fil... |
| CVE-2004-1494 | — | — | 3.7% | Dec 31, 2004 | Buffer overflow in the Screen Fetch option in XDICT 2002 through 2005 allows remote attackers to cause a denial of servi... |
| CVE-2004-1495 | — | — | 1.3% | Dec 31, 2004 | The Repair Archive command in WinRAR 3.40 allows remote attackers to cause a denial of service (application crash) via a... |
| CVE-2004-1166 | — | — | 39.2% | Dec 31, 2004 | CRLF injection vulnerability in Microsoft Internet Explorer 6.0.2800.1106 and earlier allows remote attackers to execute... |
| CVE-2004-1241 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1470 | — | — | 2.4% | Dec 31, 2004 | CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTT... |
| CVE-2004-0948 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. ... |
| CVE-2004-1448 | — | — | 1.7% | Dec 31, 2004 | Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to uploa... |
| CVE-2004-1489 | — | — | 2.0% | Dec 31, 2004 | Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remot... |
| CVE-2004-0429 | — | — | 1.9% | Dec 31, 2004 | Unknown vulnerability related to "the handling of large requests" in RAdmin for Apple Mac OS X 10.3.3 and Mac OS X 10.2.... |
| CVE-2004-1782 | — | — | 25.7% | Dec 31, 2004 | athenareg.php in Athena Web Registration allows remote attackers to execute arbitrary commands via shell metacharacters ... |
| CVE-2004-0919 | — | — | 0.4% | Dec 31, 2004 | The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordi... |
| CVE-2004-1469 | — | — | 0.6% | Dec 31, 2004 | Format string vulnerability in the log function in SUS 2.0.2, and other versions before 2.0.6, allows local users to exe... |
| CVE-2004-1483 | — | — | 2.4% | Dec 31, 2004 | Multiple unknown vulnerabilities in the ActiveX and HTML file browsers in Symantec Clientless VPN Gateway 4400 Series 5.... |
| CVE-2004-1306 | — | — | 34.5% | Dec 31, 2004 | Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows ... |
| CVE-2004-1545 | — | — | 2.6% | Dec 31, 2004 | UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two ... |
| CVE-2004-1484 | — | — | 7.3% | Dec 31, 2004 | Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy cli... |
| CVE-2004-1486 | — | — | 3.7% | Dec 31, 2004 | Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through ... |
| CVE-2004-1563 | — | — | 2.0% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in w-Agora 4.1.6a allow remote attackers to execute arbitrary web sc... |
| CVE-2004-1412 | — | — | 1.7% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.x allows remote attackers to inject arbitrary... |
| CVE-2004-1463 | — | — | 2.3% | Dec 31, 2004 | Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknow... |
| CVE-2004-1485 | — | — | 2.5% | Dec 31, 2004 | Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via ... |
| CVE-2004-1405 | — | — | 5.2% | Dec 31, 2004 | MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, su... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now