2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1773 | — | — | 3.0% | Dec 31, 2004 | Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via (1) long outp... |
| CVE-2004-1780 | — | — | 0.4% | Dec 31, 2004 | Info Touch Surfnet kiosk allows local users to deposit extra time into Internet kiosk accounts via repeated authenticati... |
| CVE-2004-2170 | — | — | 3.5% | Dec 31, 2004 | Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and earlier allows remote attackers to rea... |
| CVE-2004-1767 | — | — | 0.4% | Dec 31, 2004 | The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel module... |
| CVE-2004-1306 | — | — | 34.5% | Dec 31, 2004 | Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows ... |
| CVE-2004-0979 | — | — | 4.2% | Dec 31, 2004 | Internet Explorer on Windows XP does not properly modify the "Drag and Drop or copy and paste files" setting when the us... |
| CVE-2004-2074 | — | — | 35.8% | Dec 31, 2004 | Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string ... |
| CVE-2004-1779 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in board.php for ThWboard before beta 2.84 allows remote attackers to inject ar... |
| CVE-2004-2158 | — | — | 4.1% | Dec 31, 2004 | SQL injection vulnerability in Serendipity 0.7-beta1 allows remote attackers to execute arbitrary SQL commands via the e... |
| CVE-2004-1200 | — | — | 2.2% | Dec 31, 2004 | Firefox and Mozilla allow remote attackers to cause a denial of service (application crash from memory consumption), as ... |
| CVE-2004-1492 | — | — | 1.7% | Dec 31, 2004 | Master of Orion III 1.2.5 and earlier allows remote attackers to cause a denial of service (game exit) via a data packet... |
| CVE-2004-0985 | — | — | 20.2% | Dec 31, 2004 | Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a docum... |
| CVE-2004-1574 | — | — | 4.6% | Dec 31, 2004 | Buffer overflow in Vypress Messenger 3.5.1 and earlier allows remote attackers to execute arbitrary code via a message w... |
| CVE-2004-2119 | — | — | 1.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Tiny Server 1.1 allows remote attackers to inject arbitrary web script or HT... |
| CVE-2004-2168 | — | — | 1.7% | Dec 31, 2004 | BaSoMail 1.24 allows remote attackers to cause a denial of service (CPU consumption) via multiple connections to TCP por... |
| CVE-2004-2171 | — | — | 3.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Cherokee before 0.4.8 allows remote attackers to inject arbitrary web script... |
| CVE-2004-1761 | — | — | 2.7% | Dec 31, 2004 | Unknown vulnerability in Ethereal 0.8.13 to 0.10.2 allows attackers to cause a denial of service (segmentation fault) vi... |
| CVE-2004-1879 | — | — | 1.2% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in PHPKIT 1.6.03 allows allows remote attackers to inject arbitrary web script ... |
| CVE-2004-1762 | — | — | 2.5% | Dec 31, 2004 | Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.D worm to bypass FAS... |
| CVE-2004-1763 | — | — | 8.1% | Dec 31, 2004 | Buffer overflow in hsrun.exe for HAHTsite Scenario Server 5.1 Patch 06 (build 91) allows remote attackers to cause a den... |
| CVE-2004-1900 | — | — | 3.8% | Dec 31, 2004 | Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attacker... |
| CVE-2004-2062 | — | — | 2.4% | Dec 31, 2004 | SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary... |
| CVE-2004-1531 | — | — | 1.3% | Dec 31, 2004 | SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to exe... |
| CVE-2004-0997 | — | — | 0.4% | Dec 31, 2004 | Unspecified vulnerability in the ptrace MIPS assembly code in Linux kernel 2.4 before 2.4.17 allows local users to gain ... |
| CVE-2004-1572 | — | — | 2.2% | Dec 31, 2004 | AJ-Fork 167 does not restrict access to directories such as (1) data, (2) inc, (3) plugins, (4) skins, or (5) tools, whi... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now