2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1687 | — | — | 2.4% | Sep 16, 2004 | CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response S... |
| CVE-2004-0809 | — | — | 15.5% | Sep 16, 2004 | The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process cras... |
| CVE-2004-1688 | — | — | 3.6% | Sep 16, 2004 | Pigeon Server 3.02.0143 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumpt... |
| CVE-2004-1689 | — | — | 1.2% | Sep 16, 2004 | sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbit... |
| CVE-2004-1379 | — | — | 4.0% | Sep 16, 2004 | Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to e... |
| CVE-2004-1685 | — | — | 1.8% | Sep 15, 2004 | SMC routers SMC7004VWBR running firmware 1.00.014 and SMC7008ABR EU running firmware 1.42.003 allow remote attackers to ... |
| CVE-2004-1686 | — | — | 10.3% | Sep 15, 2004 | Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Jav... |
| CVE-2004-0905 | — | — | 3.0% | Sep 14, 2004 | Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ... |
| CVE-2004-0831 | — | — | 0.4% | Sep 14, 2004 | McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" p... |
| CVE-2004-1680 | — | — | 1.9% | Sep 13, 2004 | application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a d... |
| CVE-2004-1684 | — | — | 1.4% | Sep 13, 2004 | Zyxel P681 running ZyNOS Vt020225a contains portions of memory in an ARP request, which allows remote attackers to obtai... |
| CVE-2004-1683 | — | — | 0.3% | Sep 13, 2004 | A race condition in crrtrap for QNX RTP 6.1 allows local users to gain privileges by modifying the PATH environment vari... |
| CVE-2004-0807 | — | — | 5.5% | Sep 13, 2004 | Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via c... |
| CVE-2004-0838 | — | — | 0.2% | Sep 13, 2004 | Lexar Safe Guard for JumpDrive Secure 1.0 stores the password insecurely in memory using XOR encryption, which allows lo... |
| CVE-2004-1678 | — | — | 7.2% | Sep 13, 2004 | Directory traversal vulnerability in pdesk.cgi in PerlDesk allows remote attackers to read portions of arbitrary files a... |
| CVE-2004-1677 | — | — | 1.5% | Sep 12, 2004 | pdesk.cgi in PerlDesk allows remote attackers to gain sensitive information via an invalid lang parameter, which include... |
| CVE-2004-1676 | — | — | 3.3% | Sep 12, 2004 | Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote attackers to execute ar... |
| CVE-2004-1675 | — | — | 12.4% | Sep 11, 2004 | Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQU... |
| CVE-2004-1670 | — | — | 1.8% | Sep 10, 2004 | Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other ver... |
| CVE-2004-1668 | — | — | 1.3% | Sep 10, 2004 | Multiple SQL injection vulnerabilities in index.php in Subjects 2.0 Postnuke module allow remote attackers to execute ar... |
| CVE-2004-1669 | — | — | 1.2% | Sep 10, 2004 | Cross-site scripting (XSS) vulnerability in MERAK Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versi... |
| CVE-2004-0830 | — | — | 1.6% | Sep 9, 2004 | The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Micro... |
| CVE-2004-1667 | — | — | 1.9% | Sep 9, 2004 | Off-by-one error in Halo Combat Evolved 1.04 and earlier allows remote attackers to cause a denial of service (server cr... |
| CVE-2004-0851 | — | — | 0.3% | Sep 8, 2004 | The (1) write_list and (2) dump_curr_list functions in Net-Acct before 0.71 allows local users to overwrite arbitrary fi... |
| CVE-2004-0823 | — | — | 2.7% | Sep 7, 2004 | OpenLDAP 1.0 through 2.1.19, as used in Apple Mac OS 10.3.4 and 10.3.5 and possibly other operating systems, may allow c... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now