2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0227 | — | — | 3.2% | Jun 14, 2004 | Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via ... |
| CVE-2004-0050 | — | — | 1.4% | Jun 14, 2004 | Verity Ultraseek before 5.2.2 allows remote attackers to obtain the full pathname of the document root via an MS-DOS dev... |
| CVE-2004-0154 | — | — | 1.7% | Jun 14, 2004 | rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mo... |
| CVE-2004-0396 | — | — | 67.5% | Jun 14, 2004 | Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows... |
| CVE-2004-0116 | — | — | 36.6% | Jun 1, 2004 | An Activation function in the RPCSS Service involved with DCOM activation for Microsoft Windows 2000, XP, and 2003 allow... |
| CVE-2004-0156 | — | — | 3.5% | Jun 1, 2004 | Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays... |
| CVE-2004-0157 | — | — | 0.4% | Jun 1, 2004 | x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows lo... |
| CVE-2004-0177 | — | — | 2.6% | Jun 1, 2004 | The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an infor... |
| CVE-2004-0179 | — | — | 11.1% | Jun 1, 2004 | Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Ca... |
| CVE-2004-0180 | — | — | 1.8% | Jun 1, 2004 | The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff fil... |
| CVE-2004-0181 | — | — | 0.4% | Jun 1, 2004 | The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the... |
| CVE-2004-0182 | — | — | 1.3% | Jun 1, 2004 | Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty su... |
| CVE-2004-0197 | — | — | 26.3% | Jun 1, 2004 | Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-c... |
| CVE-2004-0391 | — | — | 4.6% | Jun 1, 2004 | Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a har... |
| CVE-2004-0388 | — | — | 0.6% | Jun 1, 2004 | The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack. |
| CVE-2004-0387 | — | — | 3.2% | Jun 1, 2004 | Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer 8, RealOne Player, RealOne Player 10 beta, and Real... |
| CVE-2004-0385 | — | — | 15.5% | Jun 1, 2004 | Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allo... |
| CVE-2004-0409 | — | — | 9.0% | Jun 1, 2004 | Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows re... |
| CVE-2004-0407 | — | — | 1.5% | Jun 1, 2004 | The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allo... |
| CVE-2004-0405 | — | — | 2.4% | Jun 1, 2004 | CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client reques... |
| CVE-2004-0403 | — | — | 2.9% | Jun 1, 2004 | Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet w... |
| CVE-2004-0109 | — | — | 0.6% | Jun 1, 2004 | Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with ph... |
| CVE-2004-0155 | — | — | 3.6% | Jun 1, 2004 | The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not veri... |
| CVE-2004-0117 | — | — | 26.4% | Jun 1, 2004 | Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2... |
| CVE-2004-0118 | — | — | 22.2% | Jun 1, 2004 | The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate ... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now