2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-2102 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in FREESCO 2.05, a modified version of thttpd, allows remote attackers to injec... |
| CVE-2004-2153 | — | — | 1.7% | Dec 31, 2004 | Multiple unknown vulnerabilities in Real Estate Management Software 1.0 have unknown impact and attack vectors. |
| CVE-2004-2158 | — | — | 4.1% | Dec 31, 2004 | SQL injection vulnerability in Serendipity 0.7-beta1 allows remote attackers to execute arbitrary SQL commands via the e... |
| CVE-2004-2339 | HIGH | 8.4 | 1.4% | Dec 31, 2004 | Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrar... |
| CVE-2004-2351 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in GBook for Php-Nuke 1.0 allows remote attackers to inject arbitrary web scrip... |
| CVE-2004-2147 | — | — | 1.4% | Dec 31, 2004 | Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash)... |
| CVE-2004-2148 | — | — | 0.4% | Dec 31, 2004 | Unknown local vulnerability in the "change user" feature of Slava Astashonok Fprobe 1.0.5 and earlier has unknown impact... |
| CVE-2004-0561 | — | — | 2.3% | Dec 31, 2004 | Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni... |
| CVE-2004-0560 | — | — | 3.0% | Dec 31, 2004 | Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec... |
| CVE-2004-1173 | — | — | 11.7% | Dec 31, 2004 | Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object model (DOM) methods in t... |
| CVE-2004-2149 | — | — | 5.6% | Dec 31, 2004 | Buffer overflow in the prepared statements API in libmysqlclient for MySQL 4.1.3 beta and 4.1.4 allows remote attackers ... |
| CVE-2004-1510 | — | — | 1.8% | Dec 31, 2004 | WebCalendar allows remote attackers to gain privileges by modifying critical parameters to (1) view_entry.php or (2) upc... |
| CVE-2004-1104 | — | — | 35.3% | Dec 31, 2004 | Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a ph... |
| CVE-2004-1511 | — | — | 2.3% | Dec 31, 2004 | Hotfoon 4.0 does not notify users before opening links in web browsers, which could allow remote attackers to execute ar... |
| CVE-2004-1179 | — | — | 0.4% | Dec 31, 2004 | The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files ... |
| CVE-2004-1526 | — | — | 1.1% | Dec 31, 2004 | Hired Team: Trial 2.0 and earlier and 2.200 does not limit how game players can kick other players off the server, inclu... |
| CVE-2004-1514 | — | — | 1.8% | Dec 31, 2004 | 04WebServer 1.42 allows remote attackers to cause a denial of service (fail to restart properly) via an HTTP request for... |
| CVE-2004-1182 | — | — | 1.8% | Dec 31, 2004 | hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate an... |
| CVE-2004-2146 | — | — | 1.3% | Dec 31, 2004 | CRLF injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows attackers to conduct HTTP response splitting attac... |
| CVE-2004-2343 | — | — | 0.6% | Dec 31, 2004 | Apache HTTP Server 2.0.47 and earlier allows local users to bypass .htaccess file restrictions, as specified in httpd.co... |
| CVE-2004-0555 | — | — | 3.3% | Dec 31, 2004 | Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary c... |
| CVE-2004-1186 | — | — | 4.0% | Dec 31, 2004 | Multiple buffer overflows in enscript 1.6.3 allow remote attackers or local users to cause a denial of service (applicat... |
| CVE-2004-1502 | — | — | 1.3% | Dec 31, 2004 | The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (socke... |
| CVE-2004-2103 | — | — | 2.1% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to ... |
| CVE-2004-1508 | — | — | 1.6% | Dec 31, 2004 | init.php in WebCalendar allows remote attackers to execute arbitrary local PHP scripts via the user_inc parameter. |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now