2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-2203 | — | — | 1.5% | Dec 31, 2004 | Ansel 1.2 through 2.0 uses insecure default permissions, which allows remote attackers to gain access to web readable di... |
| CVE-2004-2162 | — | — | 4.1% | Dec 31, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow remote attackers to inject arbitrary web script o... |
| CVE-2004-2208 | — | — | 1.3% | Dec 31, 2004 | CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP respon... |
| CVE-2004-2339 | HIGH | 8.4 | 1.4% | Dec 31, 2004 | Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrar... |
| CVE-2004-2389 | — | — | 1.8% | Dec 31, 2004 | Unknown vulnerability in Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x before 2.0.8 allows remote attack... |
| CVE-2004-2407 | — | — | 1.5% | Dec 31, 2004 | Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security ho... |
| CVE-2004-2197 | — | — | 0.3% | Dec 31, 2004 | kdocker.cpp in kdocker 0.1 through 0.8 does not properly check the ownership of files, which could allow local users to ... |
| CVE-2004-2198 | — | — | 6.1% | Dec 31, 2004 | account.asp in DUware DUclassmate 1.0 through 1.1 allows remote attackers to change the passwords for arbitrary users by... |
| CVE-2004-0561 | — | — | 2.3% | Dec 31, 2004 | Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a deni... |
| CVE-2004-0560 | — | — | 3.0% | Dec 31, 2004 | Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly exec... |
| CVE-2004-2199 | — | — | 1.9% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in DUware DUclassified 4.0 allows remote attackers to inject arbitrary web scri... |
| CVE-2004-1560 | — | — | 25.6% | Dec 31, 2004 | Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service (mssqlserver service halt) via a long requ... |
| CVE-2004-1104 | — | — | 35.3% | Dec 31, 2004 | Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a ph... |
| CVE-2004-1561 | — | — | 78.3% | Dec 31, 2004 | Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with ... |
| CVE-2004-1576 | — | — | 1.6% | Dec 31, 2004 | Format string vulnerability in Judge Dredd: Dredd vs. Death 1.01 and earlier allows remote attackers to cause a denial o... |
| CVE-2004-1564 | — | — | 6.1% | Dec 31, 2004 | CRLF injection vulnerability in subscribe_thread.php in w-Agora 4.1.6a allows remote attackers to perform HTTP Response ... |
| CVE-2004-2195 | — | — | 1.7% | Dec 31, 2004 | PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote attackers to execute arbitrary ... |
| CVE-2004-2335 | — | — | 0.4% | Dec 31, 2004 | The Macromedia installers and e-licensing client on Mac OS X, as used for Macromedia Contribute 2, Director, Dreamweaver... |
| CVE-2004-0555 | — | — | 3.3% | Dec 31, 2004 | Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary c... |
| CVE-2004-1234 | — | — | 0.5% | Dec 31, 2004 | load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary ... |
| CVE-2004-1555 | — | — | 1.9% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary S... |
| CVE-2004-1236 | — | — | 8.9% | Dec 31, 2004 | Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allow... |
| CVE-2004-2163 | — | — | 1.7% | Dec 31, 2004 | login_radius on OpenBSD 3.2, 3.5, and possibly other versions does not verify the shared secret in a response packet fro... |
| CVE-2004-1238 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1558 | — | — | 71.1% | Dec 31, 2004 | Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now