2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-0600Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute a...
CVE-2004-0632Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows r...
CVE-2004-0697Unknown vulnerability in 4D WebSTAR 5.3.2 and earlier allows remote attackers to read the php.ini configuration file and...
CVE-2004-0741LionMax Software WWW File Share Pro 2.60 allows remote attackers to cause a denial of service (crash or hang) via a long...
CVE-2004-06984D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack.
CVE-2004-0738Multiple SQL injection vulnerabilities in the Search module in Php-Nuke allow remote attackers to execute arbitrary SQL ...
CVE-2004-0739Buffer overflow in Whisper FTP Surfer 1.0.7 allows remote FTP servers to cause a denial of service (client crash) and po...
CVE-2004-0700Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Ap...
CVE-2004-0704Unknown vulnerability in (1) duplicates.cgi and (2) buglist.cgi in Bugzilla 2.16.x before 2.16.6, 2.18 before 2.18rc1, w...
CVE-2004-0703Unknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users with "grant membersh...
CVE-2004-0702DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not runn...
CVE-2004-0701Sun Ray Server Software (SRSS) 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when th...
CVE-2004-0737Multiple cross-site scripting vulnerabilities in index.php in the Search module for Php-Nuke allows remote attackers to ...
CVE-2004-0735Buffer overflow in Medal of Honor (1) Allied Assault 1.11v9 and earlier, (2) Breakthrough 2.40b and earlier, and (3) Spe...
CVE-2004-0734Web_Store.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter.
CVE-2004-0733Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly ex...
CVE-2004-0732SQL injection vulnerability in index.php in the Search module for Php-Nuke allows remote attackers to execute arbitrary ...
CVE-2004-0731Cross-site scripting (XSS) vulnerability in index.php in the Search module for Php-Nuke allows remote attackers to injec...
CVE-2004-0730Multiple cross-site scripting (XSS) vulnerabilities in PhpBB 2.0.8 allow remote attackers to inject arbitrary web script...
CVE-2004-0729PhpBB 2.0.8 allows remote attackers to gain sensitive information via an invalid (1) category_rows parameter to index.ph...
CVE-2004-0728The Remote Control Client service in Microsoft's Systems Management Server (SMS) 2.50.2726.0 allows remote attackers to ...
CVE-2004-0740The HTTP server in Lexmark T522 and possibly other models allows remote attackers to cause a denial of service (server c...
CVE-2004-0686Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb....
CVE-2004-0715The WebLogic Authentication provider for BEA WebLogic Server and WebLogic Express 8.1 through SP2 and 7.0 through SP4 do...
CVE-2004-0714Cisco Internetwork Operating System (IOS) 12.0S through 12.3T attempts to process SNMP solicited operations on improper ...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now