2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0642 | — | — | 8.3% | Sep 28, 2004 | Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) libra... |
| CVE-2004-0691 | — | — | 14.7% | Sep 28, 2004 | Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers ... |
| CVE-2004-0558 | — | — | 26.8% | Sep 28, 2004 | The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of s... |
| CVE-2004-0690 | — | — | 0.5% | Sep 28, 2004 | The DCOPServer in KDE 3.2.3 and earlier allows local users to gain unauthorized access via a symlink attack on DCOP file... |
| CVE-2004-0644 | — | — | 5.6% | Sep 28, 2004 | The asn1buf_skiptail function in the ASN.1 decoder library for MIT Kerberos 5 (krb5) 1.2.2 through 1.3.4 allows remote a... |
| CVE-2004-0500 | — | — | 5.0% | Sep 28, 2004 | Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to c... |
| CVE-2004-1698 | — | — | 3.2% | Sep 24, 2004 | The Base64 function in PopMessenger 1.60 (before 20 Sep 2004) and earlier allows remote attackers to cause a denial of s... |
| CVE-2004-1699 | — | — | 8.1% | Sep 21, 2004 | SettingsBase.php in Pinnacle ShowCenter 1.51 allows remote attackers to cause a denial of service (web interface errors)... |
| CVE-2004-1378 | — | — | 2.4% | Sep 21, 2004 | The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and ... |
| CVE-2004-1697 | — | — | 1.5% | Sep 21, 2004 | The "Forgot your Password" link in Computer Associates (CA) Unicenter Management Portal 2.0 and 3.1 displays different e... |
| CVE-2004-1696 | — | — | 7.6% | Sep 21, 2004 | EmuLive Server4 Commerce Edition Build 7560 allows remote attackers to cause a denial of service (application crash) via... |
| CVE-2004-1694 | — | — | 1.8% | Sep 21, 2004 | Symantec ON Command CCM 5.4.x and iCommand 3.0.x has four default usernames and passwords, one of which is hardcoded, wh... |
| CVE-2004-1695 | — | — | 10.1% | Sep 20, 2004 | EmuLive Server4 Commerce Edition Build 7560 allows remote attackers to bypass authentication for the remote administrati... |
| CVE-2004-1692 | — | — | 1.8% | Sep 18, 2004 | Cross-site scripting (XSS) vulnerability in index.php in Mambo 4.5 (1.0.9) allows remote attackers to inject arbitrary w... |
| CVE-2004-1693 | — | — | 3.0% | Sep 18, 2004 | PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote attackers to execute arbitrar... |
| CVE-2004-1691 | — | — | 3.6% | Sep 18, 2004 | The Web Server in DNS4Me 3.0.0.4 allows remote attackers to cause a denial of service (CPU consumption and crash) via a ... |
| CVE-2004-1690 | — | — | 1.4% | Sep 18, 2004 | Cross-site scripting (XSS) vulnerability in the Web Server in DNS4Me 3.0.0.4 allows remote attackers to execute arbitrar... |
| CVE-2004-0534 | — | — | 1.2% | Sep 17, 2004 | Cross-site scripting (XSS) vulnerability in Business Objects InfoView 5.1.4 through 5.1.8 for WebIntelligence 2.7.0 thro... |
| CVE-2004-0872 | — | — | 2.7% | Sep 16, 2004 | Opera does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel ... |
| CVE-2004-0871 | — | — | 1.1% | Sep 16, 2004 | Mozilla does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channe... |
| CVE-2004-0870 | — | — | 1.5% | Sep 16, 2004 | KDE Konqueror does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure ... |
| CVE-2004-0869 | — | — | 14.8% | Sep 16, 2004 | Internet Explorer does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a sec... |
| CVE-2004-0827 | — | — | 5.5% | Sep 16, 2004 | Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote att... |
| CVE-2004-0866 | — | — | 10.1% | Sep 16, 2004 | Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, ... |
| CVE-2004-0801 | — | — | 4.3% | Sep 16, 2004 | Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUP... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now