2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0921 | — | — | 1.1% | Jan 27, 2005 | AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenti... |
| CVE-2004-0918 | — | — | 16.0% | Jan 27, 2005 | The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote att... |
| CVE-2004-0922 | — | — | 1.0% | Jan 27, 2005 | AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which cause... |
| CVE-2004-0932 | — | — | 65.8% | Jan 27, 2005 | McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004... |
| CVE-2004-0917 | — | — | 1.7% | Jan 27, 2005 | The default installation of Vignette Application Portal installs the diagnostic utility without authentication requireme... |
| CVE-2004-1340 | — | — | 0.4% | Jan 26, 2005 | Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the pam_radius_auth.conf set to be world-readable, whi... |
| CVE-2004-1057 | — | — | 0.4% | Jan 21, 2005 | Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorr... |
| CVE-2004-1184 | — | — | 1.2% | Jan 21, 2005 | The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell m... |
| CVE-2004-1185 | — | — | 4.5% | Jan 21, 2005 | Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands v... |
| CVE-2004-0897 | — | — | 42.8% | Jan 11, 2005 | The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which ... |
| CVE-2004-0991 | — | — | 3.6% | Jan 11, 2005 | Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or ... |
| CVE-2004-1039 | — | — | 1.6% | Jan 11, 2005 | The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd,... |
| CVE-2004-1065 | — | — | 10.0% | Jan 10, 2005 | Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to e... |
| CVE-2004-1063 | — | — | 4.2% | Jan 10, 2005 | PHP 4.x to 4.3.9, and PHP 5.x to 5.0.2, when running in safe mode on a multithreaded Unix webserver, allows local users ... |
| CVE-2004-1064 | — | — | 3.7% | Jan 10, 2005 | The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the real... |
| CVE-2004-1066 | — | — | 0.3% | Jan 10, 2005 | The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not p... |
| CVE-2004-1058 | — | — | 0.4% | Jan 10, 2005 | Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still... |
| CVE-2004-0139 | — | — | 1.7% | Jan 10, 2005 | Unknown vulnerability in the bsd.a kernel networking for SGI IRIX 6.5.22 through 6.5.25, and possibly earlier versions, ... |
| CVE-2004-0914 | — | — | 8.7% | Jan 10, 2005 | Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple in... |
| CVE-2004-0915 | — | — | 1.3% | Jan 10, 2005 | Multiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properl... |
| CVE-2004-1067 | — | — | 5.2% | Jan 10, 2005 | Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, wh... |
| CVE-2004-1068 | — | — | 0.4% | Jan 10, 2005 | A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, a... |
| CVE-2004-0901 | — | — | 31.1% | Jan 10, 2005 | Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data len... |
| CVE-2004-0900 | — | — | 26.0% | Jan 10, 2005 | The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the l... |
| CVE-2004-1056 | — | — | 3.3% | Jan 10, 2005 | Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now