2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1945 | — | — | 6.5% | Apr 20, 2004 | Buffer overflow in Kinesphere eXchange POP3 allows remote attackers to execute arbitrary code via a long MAIL FROM field... |
| CVE-2004-1943 | — | — | 2.6% | Apr 19, 2004 | PHP remote file inclusion vulnerability in album_portal.php in phpBB modified by Przemo 1.8 allows remote attackers to e... |
| CVE-2004-1941 | — | — | 2.0% | Apr 19, 2004 | Fastream NETFile FTP/Web Server 6.5.1.980 allows remote attackers to cause a denial of service via a username that does ... |
| CVE-2004-1938 | — | — | 1.2% | Apr 19, 2004 | SQL injection vulnerability in userlogin.php in Phorum 3.4.7 allows remote attackers to execute arbitrary SQL commands v... |
| CVE-2004-1946 | — | — | 0.6% | Apr 19, 2004 | Format string vulnerability in the PRINT_ERROR function in common.c for Cherokee Web Server 0.4.16 and earlier allows lo... |
| CVE-2004-1947 | — | — | 6.8% | Apr 19, 2004 | The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain s... |
| CVE-2004-1950 | — | — | 1.5% | Apr 19, 2004 | phpBB 2.0.8a and earlier trusts the IP address that is in the X-Forwarded-For in the HTTP header, which allows remote at... |
| CVE-2004-1942 | — | — | 1.4% | Apr 19, 2004 | The Solaris 9 patches 113579-02 through 113579-05, and 114342-02 through 114342-05, prevent ypserv and ypxfrd from prope... |
| CVE-2004-1935 | — | — | 1.8% | Apr 15, 2004 | Cross-site scripting (XSS) vulnerability in SCT Campus Pipeline allows remote attackers to inject arbitrary web script o... |
| CVE-2004-1934 | — | — | 8.3% | Apr 15, 2004 | PHP remote file inclusion vulnerability in affich.php in Gemitel 3.50 allows remote attackers to execute arbitrary PHP c... |
| CVE-2004-0372 | — | — | 0.3% | Apr 15, 2004 | xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the... |
| CVE-2004-0122 | — | — | 22.5% | Apr 15, 2004 | Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arb... |
| CVE-2004-0148 | — | — | 0.4% | Apr 15, 2004 | wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by c... |
| CVE-2004-0173 | — | — | 15.8% | Apr 15, 2004 | Directory traversal vulnerability in Apache 1.3.29 and earlier, and Apache 2.0.48 and earlier, when running on Cygwin, a... |
| CVE-2004-0364 | — | — | 3.7% | Apr 15, 2004 | The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet Security 2004 is marked safe for scripting, which allows... |
| CVE-2004-0153 | — | — | 3.7% | Apr 15, 2004 | Multiple format string vulnerabilities in emil 2.1.0 and earlier may allow remote attackers to execute arbitrary code by... |
| CVE-2004-0152 | — | — | 4.1% | Apr 15, 2004 | Multiple stack-based buffer overflows in (1) the encode_mime function, (2) the encode_uuencode function, (3) or the deco... |
| CVE-2004-0151 | — | — | 0.4% | Apr 15, 2004 | Unknown vulnerability in xitalk 1.1.11 and earlier allows local users to execute arbitrary commands. |
| CVE-2004-0362 | — | — | 73.3% | Apr 15, 2004 | Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, a... |
| CVE-2004-0224 | — | — | 3.3% | Apr 15, 2004 | Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and S... |
| CVE-2004-0121 | — | — | 47.7% | Apr 15, 2004 | Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when ... |
| CVE-2004-0108 | — | — | 0.4% | Apr 15, 2004 | The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on ... |
| CVE-2004-0107 | — | — | 0.4% | Apr 15, 2004 | The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via sym... |
| CVE-2004-0111 | — | — | 2.1% | Apr 15, 2004 | gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file. |
| CVE-2004-0150 | — | — | 5.3% | Apr 15, 2004 | Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote att... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now