Strix
26.1K

2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CRITICAL12

0.4%

HIGH24

0.9%

MEDIUM9

0.3%

LOW0

0.0%

UNKNOWN2,662

98.3%

CVE IDSeverityCVSSDescription
CVE-2004-0866Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, ...
CVE-2004-1687CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response S...
CVE-2004-0869Internet Explorer does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a sec...
CVE-2004-1689sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbit...
CVE-2004-1379Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to e...
CVE-2004-0827Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote att...
CVE-2004-0872Opera does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel ...
CVE-2004-0871Mozilla does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channe...
CVE-2004-0870KDE Konqueror does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure ...
CVE-2004-1686Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Jav...
CVE-2004-1685SMC routers SMC7004VWBR running firmware 1.00.014 and SMC7008ABR EU running firmware 1.42.003 allow remote attackers to ...
CVE-2004-0905Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ...
CVE-2004-0831McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" p...
CVE-2004-1680application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a d...
CVE-2004-1678Directory traversal vulnerability in pdesk.cgi in PerlDesk allows remote attackers to read portions of arbitrary files a...
CVE-2004-0838Lexar Safe Guard for JumpDrive Secure 1.0 stores the password insecurely in memory using XOR encryption, which allows lo...
CVE-2004-1684Zyxel P681 running ZyNOS Vt020225a contains portions of memory in an ARP request, which allows remote attackers to obtai...
CVE-2004-0807Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via c...
CVE-2004-1683A race condition in crrtrap for QNX RTP 6.1 allows local users to gain privileges by modifying the PATH environment vari...
CVE-2004-1676Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote attackers to execute ar...
CVE-2004-1677pdesk.cgi in PerlDesk allows remote attackers to gain sensitive information via an invalid lang parameter, which include...
CVE-2004-1675Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQU...
CVE-2004-1668Multiple SQL injection vulnerabilities in index.php in Subjects 2.0 Postnuke module allow remote attackers to execute ar...
CVE-2004-1670Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other ver...
CVE-2004-1669Cross-site scripting (XSS) vulnerability in MERAK Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versi...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now