2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-0230TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial o...
CVE-2004-0394A "potential" buffer overflow exists in the panic() function in Linux 2.4.x, although it may not be exploitable due to t...
CVE-2004-0229The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact.
CVE-2004-0228Integer signedness error in the cpufreq proc handler (cpufreq_procctl) in Linux kernel 2.6 allows local users to gain pr...
CVE-2004-0226Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or ex...
CVE-2004-0175Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary...
CVE-2004-0134cpr (libcpr) in SGI IRIX before 6.5.25 allows local users to gain privileges by loading a user provided library while re...
CVE-2004-0412Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server.
CVE-2004-0419XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attacker...
CVE-2004-0421The Portable Network Graphics library (libpng) 1.0.15 and earlier allows attackers to cause a denial of service (crash) ...
CVE-2004-0631Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly othe...
CVE-2004-0630The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including...
CVE-2004-0425Heap-based buffer overflow in SiteMinder Affiliate Agent 4.x allows remote attackers to execute arbitrary code via a lar...
CVE-2004-0432ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allo...
CVE-2004-0076Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was removed from considera...
CVE-2004-0722Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and po...
CVE-2004-0433Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine ...
CVE-2004-0435Certain "programming errors" in the msync system call for FreeBSD 5.2.1 and earlier, and 4.10 and earlier, do not proper...
CVE-2004-1724The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusion_admin/db_backups direct...
CVE-2004-0839Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbit...
CVE-2004-0503Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media f...
CVE-2004-0504Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip ser...
CVE-2004-0505The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service (assert error) via unknown att...
CVE-2004-0506The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknow...
CVE-2004-0507Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now