2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0388 | — | — | 0.6% | Jun 1, 2004 | The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack. |
| CVE-2004-0387 | — | — | 3.2% | Jun 1, 2004 | Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer 8, RealOne Player, RealOne Player 10 beta, and Real... |
| CVE-2004-0405 | — | — | 2.4% | Jun 1, 2004 | CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client reques... |
| CVE-2004-0124 | — | — | 21.3% | Jun 1, 2004 | The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network ... |
| CVE-2004-0123 | — | — | 29.6% | Jun 1, 2004 | Double free vulnerability in the ASN.1 library as used in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2... |
| CVE-2004-0155 | — | — | 3.6% | Jun 1, 2004 | The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not veri... |
| CVE-2004-0156 | — | — | 3.5% | Jun 1, 2004 | Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays... |
| CVE-2004-0120 | — | — | 55.6% | Jun 1, 2004 | The Microsoft Secure Sockets Layer (SSL) library, as used in Windows 2000, Windows XP, and Windows Server 2003, allows r... |
| CVE-2004-0119 | HIGH | 7.5 | 39.6% | Jun 1, 2004 | The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows re... |
| CVE-2004-0118 | — | — | 22.2% | Jun 1, 2004 | The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate ... |
| CVE-2004-0117 | — | — | 26.4% | Jun 1, 2004 | Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2... |
| CVE-2004-0116 | — | — | 36.6% | Jun 1, 2004 | An Activation function in the RPCSS Service involved with DCOM activation for Microsoft Windows 2000, XP, and 2003 allow... |
| CVE-2004-0157 | — | — | 0.4% | Jun 1, 2004 | x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows lo... |
| CVE-2004-0391 | — | — | 4.6% | Jun 1, 2004 | Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a har... |
| CVE-2004-0389 | HIGH | 7.5 | 52.5% | Jun 1, 2004 | RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via mal... |
| CVE-2004-0177 | — | — | 2.6% | Jun 1, 2004 | The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an infor... |
| CVE-2004-0178 | — | — | 0.4% | Jun 1, 2004 | The OSS code for the Sound Blaster (sb16) driver in Linux 2.4.x before 2.4.26, when operating in 16 bit mode, does not p... |
| CVE-2004-0403 | — | — | 2.9% | Jun 1, 2004 | Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet w... |
| CVE-2004-2044 | — | — | 11.0% | Jun 1, 2004 | PHP-Nuke 7.3, and other products that use the PHP-Nuke codebase such as the Nuke Cops betaNC PHP-Nuke Bundle, OSCNukeLit... |
| CVE-2004-2039 | — | — | 1.8% | May 29, 2004 | e107 0.615 allows remote attackers to obtain sensitive information via a direct request to (1) alt_news.php, (2) backend... |
| CVE-2004-2040 | — | — | 5.1% | May 29, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in e107 0.615 allow remote attackers to inject arbitrary web script ... |
| CVE-2004-2041 | — | — | 2.1% | May 29, 2004 | PHP remote file inclusion vulnerability in secure_img_render.php in e107 0.615 allows remote attackers to execute arbitr... |
| CVE-2004-2042 | — | — | 1.9% | May 29, 2004 | Multiple SQL injection vulnerabilities in e107 0.615 allow remote attackers to inject arbitrary SQL code and gain sensit... |
| CVE-2004-2038 | — | — | 2.5% | May 29, 2004 | Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) before LDU 700 allows remote attackers to inject arbit... |
| CVE-2004-2036 | — | — | 2.7% | May 28, 2004 | SQL injection vulnerability in the art_print function in print.inc.php in unknown versions of jPortal before 2.3.1 allow... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now