2004 CVE Vulnerabilities

2,707 CVEs published in 2004.

CVE IDSeverityCVSSDescription
CVE-2004-2035MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request wi...
CVE-2004-2033Orenosv 0.5.9f allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.
CVE-2004-2135cryptoloop on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV c...
CVE-2004-2032Netgear RP114 allows remote attackers to bypass the keyword based URL filtering by requesting a long URL, as demonstrate...
CVE-2004-2029The Util_DecodeHTTPAuth function in BNBT BitTorrent Tracker Beta 7.5 Release 2 and earlier allows remote attackers to ca...
CVE-2004-2030Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote...
CVE-2004-2028Cross-site scripting (XSS) vulnerability in stats.php in e107 allows remote attackers to inject arbitrary web script or ...
CVE-2004-2031Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or H...
CVE-2004-1354The Solaris Management Console (SMC) in Sun Solaris 8 and 9 generates different 404 error messages when a file does not ...
CVE-2004-2027Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a long Bas...
CVE-2004-2009NukeJokes 1.7 and 2 Beta allows remote attackers to obtain the full path of the server via (1) a direct call to mainfunc...
CVE-2004-2008SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to execute arbitrary SQL ...
CVE-2004-2007Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote attackers to inject ar...
CVE-2004-2006Trend Micro OfficeScan 3.0 - 6.0 has default permissions of "Everyone Full Control" on the installation directory and re...
CVE-2004-2005Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-m...
CVE-2004-2004The Live CD in SUSE LINUX 9.1 Personal edition is configured without a password for root, which allows remote attackers ...
CVE-2004-2003Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote ...
CVE-2004-1998The Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to gain sensitive information via an invalid sh...
CVE-2004-1994FuseTalk 4.0 allows remote attackers to ban other users via a direct request to banning.cfm.
CVE-2004-1999Cross-site scripting (XSS) vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to ...
CVE-2004-1997Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows...
CVE-2004-1996Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.0 allows remote attackers to inject arbitrary ...
CVE-2004-2002Unknown vulnerability in SGI IRIX 6.5 through 6.5.22m allows remote attackers to cause a denial of service via a certain...
CVE-2004-2001ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being sent or received.
CVE-2004-2000SQL injection vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to execute arbit...

Check if your code is affected by 2004 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now