2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-0479Internet Explorer 6 allows remote attackers to cause a denial of service (crash) via Javascript that creates a new popup...
CVE-2004-0478Unknown versions of Mozilla allow remote attackers to cause a denial of service (high CPU/RAM consumption) using Javascr...
CVE-2004-0475The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM f...
CVE-2004-0474Help Center (HelpCtr.exe) may allow remote attackers to read or execute arbitrary files via an "http://" or "file://" ar...
CVE-2004-0472Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is a reservation duplicate...
CVE-2004-1345Unknown vulnerability in Sun StorEdge Enterprise Storage Manager (ESM) 2.1 for Solaris 8 and Solaris 9 allows local user...
CVE-2004-1346The Sun Solaris Volume Manager (SVM) on Solaris 9 allows local users to cause a denial of service (kernel panic) via a m...
CVE-2004-1754The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via...
CVE-2004-0396Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows...
CVE-2004-0050Verity Ultraseek before 5.2.2 allows remote attackers to obtain the full pathname of the document root via an MS-DOS dev...
CVE-2004-0199Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which a...
CVE-2004-0038McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary comma...
CVE-2004-0392racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via...
CVE-2004-0154rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mo...
CVE-2004-0227Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via ...
CVE-2004-0197Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-c...
CVE-2004-0133The XFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the...
CVE-2004-0385Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allo...
CVE-2004-0407The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allo...
CVE-2004-0409Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows re...
CVE-2004-0109Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with ph...
CVE-2004-0179Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Ca...
CVE-2004-0180The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff fil...
CVE-2004-0181The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the...
CVE-2004-0182Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty su...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now