2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1907 | — | — | 6.7% | Dec 31, 2004 | The Web Filtering functionality in Kerio Personal Firewall (KPF) 4.0.13 allows remote attackers to cause a denial of ser... |
| CVE-2004-1909 | — | — | 1.4% | Dec 31, 2004 | Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR ... |
| CVE-2004-1399 | — | — | 1.7% | Dec 31, 2004 | Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read ... |
| CVE-2004-1485 | — | — | 2.5% | Dec 31, 2004 | Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via ... |
| CVE-2004-1400 | — | — | 7.2% | Dec 31, 2004 | The control panel in ASP Calendar does not require authentication to access, which allows remote attackers to gain unaut... |
| CVE-2004-1899 | — | — | 1.7% | Dec 31, 2004 | The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST... |
| CVE-2004-1398 | — | — | 0.4% | Dec 31, 2004 | Format string vulnerability in prelink.c in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and p... |
| CVE-2004-1401 | — | — | 2.7% | Dec 31, 2004 | SQL injection vulnerability in verify.asp in Asp-rider allows remote attackers to execute arbitrary SQL statements and b... |
| CVE-2004-1900 | — | — | 3.8% | Dec 31, 2004 | Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attacker... |
| CVE-2004-1402 | — | — | 3.3% | Dec 31, 2004 | SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string pa... |
| CVE-2004-1902 | — | — | 0.4% | Dec 31, 2004 | The Citrix MetaFrame Password Manager 2.0, when a central credential store is not configured, does not encrypt passwords... |
| CVE-2004-1397 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in UseModWiki 1.0 allows remote attackers to inject arbitrary web script or HTM... |
| CVE-2004-1409 | — | — | 1.0% | Dec 31, 2004 | Multiple cross-site scripting vulnerabilities in Image Gallery Web Application 0.9.10 allow remote attackers to inject a... |
| CVE-2004-1908 | — | — | 3.4% | Dec 31, 2004 | McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via ... |
| CVE-2004-2177 | — | — | 1.2% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web scri... |
| CVE-2004-2205 | — | — | 0.3% | Dec 31, 2004 | Unknown vulnerability in Veritas Cluster Server 1.0.1 through 4.0 allows local users to gain root access via unspecified... |
| CVE-2004-1895 | — | — | 0.3% | Dec 31, 2004 | YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you... |
| CVE-2004-2070 | — | — | 0.5% | Dec 31, 2004 | The Altiris Client Service for Windows 5.6 SP1 Hotfix E (5.6.181) allows local users to execute arbitrary commands by op... |
| CVE-2004-1896 | — | — | 5.1% | Dec 31, 2004 | Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitra... |
| CVE-2004-1897 | — | — | 8.7% | Dec 31, 2004 | Administration interface in Monit 1.4 through 4.2 allows remote attackers to cause a denial of service (segmentation fau... |
| CVE-2004-2168 | — | — | 1.7% | Dec 31, 2004 | BaSoMail 1.24 allows remote attackers to cause a denial of service (CPU consumption) via multiple connections to TCP por... |
| CVE-2004-2169 | — | — | 0.5% | Dec 31, 2004 | Application Access Server (A-A-S) 1.0.37 and earlier allows remote authenticated users to cause a denial of service (app... |
| CVE-2004-1566 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in index.php in Silent Storm Portal 2.1 and 2.2 allows remote attackers to exec... |
| CVE-2004-1808 | — | — | 0.3% | Dec 31, 2004 | Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbit... |
| CVE-2004-1723 | — | — | 1.2% | Dec 31, 2004 | The (1) updateuser.php and (2) forums_prune.php scripts in PHP-Fusion 4.00 allow remote attackers to obtain sensitive in... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now