2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1238 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1239 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1240 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1241 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1242 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-1243 | — | — | — | Dec 31, 2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was... |
| CVE-2004-2357 | — | — | 1.4% | Dec 31, 2004 | The embedded MySQL 4.0 server for Proofpoint Protection Server does not require a password for the root user of MySQL, w... |
| CVE-2004-2390 | — | — | 1.4% | Dec 31, 2004 | The roster import functionality in Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x before 2.0.8, when usin... |
| CVE-2004-2408 | — | — | 0.4% | Dec 31, 2004 | Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and... |
| CVE-2004-1140 | — | — | 2.5% | Dec 31, 2004 | Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (application hang) and possibly fill ... |
| CVE-2004-2226 | — | — | 1.2% | Dec 31, 2004 | Mozilla Mail 1.7.1 and 1.7.3, and Thunderbird before 0.9, when HTML-Mails is enabled, allows remote attackers to determi... |
| CVE-2004-2276 | — | — | 0.4% | Dec 31, 2004 | F-Secure Anti-Virus 5.41 and 5.42 on Windows, Client Security 5.50 and 5.52, 4.60 for Samba Servers, and 4.52 and earlie... |
| CVE-2004-2212 | — | — | 1.5% | Dec 31, 2004 | SQL injection vulnerability in forum.asp in AliveSites Forums 2.0 allows remote attackers to execute arbitrary SQL comma... |
| CVE-2004-2294 | — | — | 1.7% | Dec 31, 2004 | Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote... |
| CVE-2004-2213 | — | — | 1.4% | Dec 31, 2004 | Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to obtain the source code for scripts via a (1) trailin... |
| CVE-2004-2215 | — | — | 0.3% | Dec 31, 2004 | RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, which allows local users to access the terminals of o... |
| CVE-2004-2347 | — | — | 9.9% | Dec 31, 2004 | blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metach... |
| CVE-2004-2358 | — | — | 1.3% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in admin_words.php for phpBB 2.0.6c allows remote attackers to inject arbitrary... |
| CVE-2004-1485 | — | — | 2.5% | Dec 31, 2004 | Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via ... |
| CVE-2004-2104 | — | — | 11.9% | Dec 31, 2004 | Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, includi... |
| CVE-2004-2176 | — | — | 2.8% | Dec 31, 2004 | The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which ... |
| CVE-2004-1399 | — | — | 1.7% | Dec 31, 2004 | Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read ... |
| CVE-2004-2175 | — | — | 1.2% | Dec 31, 2004 | Multiple SQL injection vulnerabilities in ReviewPost PHP Pro allow remote attackers to execute arbitrary SQL commands vi... |
| CVE-2004-2211 | — | — | 1.4% | Dec 31, 2004 | Cross-site scripting (XSS) vulnerability in AliveSites Forums 2.0 allows remote attackers to inject arbitrary web script... |
| CVE-2004-2393 | — | — | 2.1% | Dec 31, 2004 | Java Secure Socket Extension (JSSE) 1.0.3 through 1.0.3_2 does not properly validate the certificate chain of a client o... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now