2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-2183 | — | — | 1.8% | Dec 31, 2004 | Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string. |
| CVE-2004-0567 | — | — | 72.3% | Dec 31, 2004 | The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser... |
| CVE-2004-2105 | — | — | 1.9% | Dec 31, 2004 | The webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to read arbitrary .htt fi... |
| CVE-2004-2137 | — | — | 26.1% | Dec 31, 2004 | Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks ... |
| CVE-2004-2178 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to execute arbitrary SQL commands via unk... |
| CVE-2004-2350 | — | — | 1.2% | Dec 31, 2004 | SQL injection vulnerability in search.php for phpBB 1.0 through 2.0.6 allows remote attackers to execute arbitrary SQL a... |
| CVE-2004-2364 | — | — | 10.7% | Dec 31, 2004 | Cross-site request forgery (CSRF) vulnerability in PHPX 3.0 through 3.2.6 allows remote attackers to execute arbitrary c... |
| CVE-2004-2382 | — | — | 1.6% | Dec 31, 2004 | The PerfectNav plugin for Microsoft Internet Explorer allows remote attackers to cause a denial of service (browser cras... |
| CVE-2004-1198 | — | — | 1.7% | Dec 31, 2004 | Microsoft Internet Explorer allows remote attackers to cause a denial of service (application crash from memory consumpt... |
| CVE-2004-2172 | HIGH | 7.5 | 6.8% | Dec 31, 2004 | EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the ... |
| CVE-2004-2173 | — | — | 2.0% | Dec 31, 2004 | SQL injection vulnerability in advSearch_h.asp in EarlyImpact ProductCart allows remote attackers to execute arbitrary S... |
| CVE-2004-0561 | — | — | 2.3% | Dec 31, 2004 | Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni... |
| CVE-2004-0560 | — | — | 3.0% | Dec 31, 2004 | Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec... |
| CVE-2004-2174 | — | — | 1.8% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Custva.asp in EarlyImpact ProductCart allows remote attackers to inject arbi... |
| CVE-2004-1535 | — | — | 6.3% | Dec 31, 2004 | PHP remote file inclusion vulnerability in admin_cash.php for the Cash Mod module for phpBB allows remote attackers to e... |
| CVE-2004-1104 | — | — | 35.3% | Dec 31, 2004 | Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a ph... |
| CVE-2004-1536 | — | — | 2.4% | Dec 31, 2004 | SQL injection vulnerability in index.php in the ibProArcade module for Invision Power Board (IPB) 1.x and 2.x allows rem... |
| CVE-2004-1746 | — | — | 3.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in index.php in PHP Code Snippet Library allows remote attackers to inject arbi... |
| CVE-2004-1539 | — | — | 3.1% | Dec 31, 2004 | Halo: Combat Evolved 1.05 and earlier allows remote game servers to cause a denial of service (client crash) via a long ... |
| CVE-2004-2171 | — | — | 3.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in Cherokee before 0.4.8 allows remote attackers to inject arbitrary web script... |
| CVE-2004-2310 | — | — | 3.6% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote attackers to inject arbi... |
| CVE-2004-0555 | — | — | 3.3% | Dec 31, 2004 | Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary c... |
| CVE-2004-1524 | — | — | 1.7% | Dec 31, 2004 | Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers to cause a denial of service (game interruption) via... |
| CVE-2004-2138 | — | — | 1.5% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in AWSguest.php in AllWebScripts MySQLGuest allows remote attackers to inject a... |
| CVE-2004-1533 | — | — | 7.5% | Dec 31, 2004 | Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (s... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now