2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0563 | — | — | 0.4% | Dec 23, 2004 | The tspc.conf configuration file in freenet6 before 0.9.6 and before 1.0 on Debian Linux has world readable permissions,... |
| CVE-2004-1778 | — | — | 0.4% | Dec 22, 2004 | Skype 0.92.0.12 and 1.0.0.1 for Linux, and possibly other versions, creates the /usr/share/skype/lang directory with wor... |
| CVE-2004-0452 | — | — | 0.4% | Dec 21, 2004 | Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for t... |
| CVE-2004-1307 | — | — | 6.3% | Dec 21, 2004 | Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execu... |
| CVE-2004-0852 | — | — | 3.2% | Dec 20, 2004 | Buffer overflow in htget 0.93 allows remote attackers to execute arbitrary code via a crafted URL. |
| CVE-2004-1329 | — | — | 3.3% | Dec 20, 2004 | Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd ... |
| CVE-2004-1326 | — | — | 1.1% | Dec 20, 2004 | Buffer overflow in dxterm in Ultrix 4.5 allows local users to execute arbitrary code via a long -setup parameter. |
| CVE-2004-1374 | — | — | 0.4% | Dec 18, 2004 | Multiple buffer overflows in NetBSD kernel may allow local users to execute arbitrary code and gain privileges. |
| CVE-2004-1325 | — | — | 15.7% | Dec 18, 2004 | The getItemInfoByAtom function in the ActiveX control for Microsoft Windows Media Player 9.0 returns a 0 if the file doe... |
| CVE-2004-1324 | — | — | 16.7% | Dec 18, 2004 | The Microsoft Windows Media Player 9.0 ActiveX control may allow remote attackers to execute arbitrary web script in the... |
| CVE-2004-1768 | — | — | 2.1% | Dec 17, 2004 | The character converters in the Spamhunter and Language ID modules for Symantec Brightmail AntiSpam 6.0.1 before patch 1... |
| CVE-2004-1323 | — | — | 0.3% | Dec 16, 2004 | Multiple syscalls in the compat subsystem for NetBSD before 2.0 allow local users to cause a denial of service (kernel c... |
| CVE-2004-1335 | — | — | 1.0% | Dec 15, 2004 | Memory leak in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of ser... |
| CVE-2004-1334 | — | — | 0.5% | Dec 15, 2004 | Integer overflow in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial o... |
| CVE-2004-1333 | — | — | 1.0% | Dec 15, 2004 | Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a d... |
| CVE-2004-1322 | — | — | 2.5% | Dec 15, 2004 | Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, ... |
| CVE-2004-1321 | — | — | 1.3% | Dec 15, 2004 | The configuration backup in Asante FM2008 running firmware 1.06 stores the username and password in cleartext, which cou... |
| CVE-2004-1320 | — | — | 1.5% | Dec 15, 2004 | Asante FM2008 running firmware 1.06 is shipped with a default username and password, which could allow remote attackers ... |
| CVE-2004-1319 | — | — | 26.2% | Dec 15, 2004 | The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by settin... |
| CVE-2004-1145 | — | — | 4.1% | Dec 15, 2004 | Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScrip... |
| CVE-2004-1142 | — | — | 2.4% | Dec 15, 2004 | Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malfo... |
| CVE-2004-1139 | — | — | 2.4% | Dec 15, 2004 | Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial... |
| CVE-2004-1059 | — | — | 1.2% | Dec 10, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in mnoGoSearch 3.2.26 and earlier allow remote attackers to inject a... |
| CVE-2004-1351 | — | — | 6.0% | Dec 7, 2004 | Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary... |
| CVE-2004-0497 | — | — | 0.8% | Dec 6, 2004 | Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported fi... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now