Strix
26.1K

2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CRITICAL12

0.4%

HIGH24

0.9%

MEDIUM9

0.3%

LOW0

0.0%

UNKNOWN2,662

98.3%

CVE IDSeverityCVSSDescription
CVE-2004-1387The check_forensic script in apache-utils package 1.3.31 allows local users to overwrite or create arbitrary files via a...
CVE-2004-1799PF in certain OpenBSD versions, when stateful filtering is enabled, does not limit packets for a session to the original...
CVE-2004-1895YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you...
CVE-2004-2158SQL injection vulnerability in Serendipity 0.7-beta1 allows remote attackers to execute arbitrary SQL commands via the e...
CVE-2004-1888display.cgi in Aborior Encore WebForum allows remote to execute arbitrary commands via shell metacharacters in the file ...
CVE-2004-1435Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3...
CVE-2004-1889Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a denial of service (ha...
CVE-2004-0567The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser...
CVE-2004-1580SQL injection vulnerability in index.php in CubeCart 2.0.1 allows remote attackers to execute arbitrary SQL commands via...
CVE-2004-1801Directory traversal vulnerability in PWebServer 0.3.3 allows remote attackers to read arbitrary files via a .. (dot dot)...
CVE-2004-1891The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possi...
CVE-2004-1043Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to execute arbitrary code by using the "Related Topics" ...
CVE-2004-1049Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitra...
CVE-2004-1050Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or ...
CVE-2004-1896Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitra...
CVE-2004-2164shoprestoreorder.asp in VP-ASP 5.0 does not close the database connection when a user restores a previous order, which a...
CVE-2004-2180Multiple cross-site scripting (XSS) vulnerabilities in WowBB Forum 1.61 allow remote attackers to inject arbitrary web s...
CVE-2004-1882Cross-site scripting (XSS) vulnerability in popuplargeimage.asp in CactuShop 5.x allows remote attackers to inject arbit...
CVE-2004-1883Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code...
CVE-2004-0561Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni...
CVE-2004-0560Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec...
CVE-2004-1885Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE...
CVE-2004-0533Business Objects WebIntelligence 2.7.0 through 2.7.4 only enforces access controls on the client, which allows remote au...
CVE-2004-1385phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters ...
CVE-2004-1386TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execu...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now