2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2004-0227Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via ...
CVE-2004-0050Verity Ultraseek before 5.2.2 allows remote attackers to obtain the full pathname of the document root via an MS-DOS dev...
CVE-2004-0154rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mo...
CVE-2004-0396Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows...
CVE-2004-0116An Activation function in the RPCSS Service involved with DCOM activation for Microsoft Windows 2000, XP, and 2003 allow...
CVE-2004-0156Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays...
CVE-2004-0157x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows lo...
CVE-2004-0177The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an infor...
CVE-2004-0179Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Ca...
CVE-2004-0180The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff fil...
CVE-2004-0181The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the...
CVE-2004-0182Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty su...
CVE-2004-0197Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-c...
CVE-2004-0391Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a har...
CVE-2004-0388The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.
CVE-2004-0387Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer 8, RealOne Player, RealOne Player 10 beta, and Real...
CVE-2004-0385Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allo...
CVE-2004-0409Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows re...
CVE-2004-0407The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allo...
CVE-2004-0405CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client reques...
CVE-2004-0403Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet w...
CVE-2004-0109Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with ph...
CVE-2004-0155The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not veri...
CVE-2004-0117Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2...
CVE-2004-0118The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate ...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now