Strix
26.1K

2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CRITICAL12

0.4%

HIGH24

0.9%

MEDIUM9

0.3%

LOW0

0.0%

UNKNOWN2,662

98.3%

CVE IDSeverityCVSSDescription
CVE-2004-1507CRLF injection vulnerability in login.php in WebCalendar allows remote attackers to inject CRLF sequences via the return...
CVE-2004-1508init.php in WebCalendar allows remote attackers to execute arbitrary local PHP scripts via the user_inc parameter.
CVE-2004-1511Hotfoon 4.0 does not notify users before opening links in web browsers, which could allow remote attackers to execute ar...
CVE-2004-1533Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (s...
CVE-2004-1464MEDIUM5.9Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY (virtual terminal) conn...
CVE-2004-1393Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a de...
CVE-2004-1506Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar allow remote attackers to inject arbitrary web script...
CVE-2004-1459Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIU...
CVE-2004-1509validate.php in WebCalendar allows remote attackers to gain sensitive information via an invalid encoded_login parameter...
CVE-2004-1498SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute ar...
CVE-2004-1589Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script o...
CVE-2004-1503Integer overflow in the InitialDirContext in Java Runtime Environment (JRE) 1.4.2, 1.5.0 and possibly other versions all...
CVE-2004-1504The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sen...
CVE-2004-0567The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser...
CVE-2004-1423Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth o...
CVE-2004-1510WebCalendar allows remote attackers to gain privileges by modifying critical parameters to (1) view_entry.php or (2) upc...
CVE-2004-1465Multiple buffer overflows in WinZip 9.0 and earlier may allow attackers to execute arbitrary code via multiple vectors, ...
CVE-2004-1505Directory traversal vulnerability in index.php in Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to read...
CVE-2004-1806SQL injection vulnerability in index.cfm in CFWebstore 5.0 allows remote attackers to execute SQL commands via the (1) c...
CVE-2004-1887Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a t...
CVE-2004-1906Mcafee FreeScan allows remote attackers to cause a denial of service and possibly arbitrary code via a long string in th...
CVE-2004-1499Cross-site scripting (XSS) vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers ...
CVE-2004-1500Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to caus...
CVE-2004-0561Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni...
CVE-2004-0560Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now