2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-0521SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL stateme...
CVE-2004-0520Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arb...
CVE-2004-0519Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary sc...
CVE-2004-0518Unknown vulnerability in AppleFileServer for Mac OS X 10.3.4, related to "the use of SSH and reporting errors," has unkn...
CVE-2004-0517Unknown vulnerability in Mac OS X 10.3.4, related to "handling of process IDs during package installation," a different ...
CVE-2004-0476Buffer overflow in 3Com OfficeConnect Remote 812 ADSL Router 1.1.9.4 allows remote attackers to cause a denial of servic...
CVE-2004-0839Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbit...
CVE-2004-0487A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resour...
CVE-2004-0490cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path optio...
CVE-2004-0501Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a re...
CVE-2004-0502Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img...
CVE-2004-1721The (1) function.php or (2) function.view.php scripts in Merak Mail Server 5.2.7 allow remote attackers to read arbitrar...
CVE-2004-1722SQL injection vulnerability in calendar.html in Merak Mail Server 5.2.7 allows remote attackers to execute arbitrary SQL...
CVE-2004-1719Multiple cross-site scripting (XSS) vulnerabilities in Merak Webmail Server 5.2.7 allow remote attackers to inject arbit...
CVE-2004-1718The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 and earlier allows local users to cause a denial of ...
CVE-2004-1720The (1) address.html and possibly (2) calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sens...
CVE-2004-1717Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary ...
CVE-2004-1737SQL injection vulnerability in auth_login.php in Cacti 0.8.5a allows remote attackers to execute arbitrary SQL commands ...
CVE-2004-1716Cross-site scripting (XSS) vulnerability in PForum before 1.26 allows remote attackers to inject arbitrary web script or...
CVE-2004-1682Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via for...
CVE-2004-1715Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 allows remote attackers or local users to read arb...
CVE-2004-1713Unknown vulnerability in HP Process Resource Manager (PRM) C.02.01[.01] and earlier, as used by HP-UX Workload Manager (...
CVE-2004-1347X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X D...
CVE-2004-1702The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of...
CVE-2004-1701Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now