2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-0363 | — | — | 66.6% | Apr 15, 2004 | Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Nor... |
| CVE-2004-1936 | — | — | 1.6% | Apr 14, 2004 | ZoneAlarm Pro 4.5.538.001 and possibly other versions allows remote attackers to bypass e-mail protection via attachment... |
| CVE-2004-1939 | — | — | 1.7% | Apr 14, 2004 | Cross-site scripting (XSS) vulnerability in Zaep AntiSpam 2.0 allows remote attackers to inject arbitrary web script or ... |
| CVE-2004-1944 | — | — | 1.9% | Apr 14, 2004 | Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multip... |
| CVE-2004-1758 | — | — | 0.4% | Apr 13, 2004 | BEA WebLogic Server and WebLogic Express version 8.1 up to SP2, 7.0 up to SP4, and 6.1 up to SP6 may store the database ... |
| CVE-2004-1756 | — | — | 1.2% | Apr 13, 2004 | BEA WebLogic Server and WebLogic Express 8.1 SP2 and earlier, and 7.0 SP4 and earlier, when using 2-way SSL with a custo... |
| CVE-2004-1929 | — | — | 6.7% | Apr 13, 2004 | SQL injection vulnerability in the bblogin function in functions.php in PHP-Nuke 6.x through 7.2 allows remote attackers... |
| CVE-2004-1925 | — | — | 1.2% | Apr 12, 2004 | Multiple SQL injection vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote attackers to exec... |
| CVE-2004-1933 | — | — | 0.4% | Apr 12, 2004 | Citadel/UX 5.00 through 6.14 installs the database directory and files with world-read permissions, which could allow lo... |
| CVE-2004-1930 | — | — | 1.7% | Apr 12, 2004 | Cross-site scripting (XSS) vulnerability in the cookiedecode function in mainfile.php for PHP-Nuke 6.x through 7.2, when... |
| CVE-2004-1932 | — | — | 2.1% | Apr 12, 2004 | SQL injection vulnerability in (1) auth.php and (2) admin.php in PHP-Nuke 6.x through 7.2 allows remote attackers to exe... |
| CVE-2004-1928 | — | — | 3.1% | Apr 12, 2004 | The image upload feature in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to upload and possib... |
| CVE-2004-1060 | — | — | 74.7% | Apr 12, 2004 | Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause ... |
| CVE-2004-1926 | — | — | 7.5% | Apr 11, 2004 | Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to inject arbitrary code via the (1) Theme, (2) ... |
| CVE-2004-1927 | — | — | 3.7% | Apr 11, 2004 | Directory traversal vulnerability in the map feature (tiki-map.phtml) in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier... |
| CVE-2004-1922 | — | — | 6.8% | Apr 11, 2004 | Microsoft Internet Explorer 5.5 and 6.0 allocates memory based on the memory size written in the BMP file instead of the... |
| CVE-2004-1923 | — | — | 3.3% | Apr 11, 2004 | Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct reque... |
| CVE-2004-1924 | — | — | 1.8% | Apr 11, 2004 | Multiple cross-site scripting (XSS) vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote atta... |
| CVE-2004-1921 | — | — | 1.7% | Apr 10, 2004 | X-Micro WLAN 11b Broadband Router 1.6.0.1 has a hardcoded "1502" username and password, which could allow remote attacke... |
| CVE-2004-1920 | — | — | 2.4% | Apr 10, 2004 | X-Micro WLAN 11b Broadband Router 1.2.2, 1.2.2.3, 1.2.2.4, and 1.6.0.0 has a hardcoded "super" username and password, wh... |
| CVE-2004-1918 | — | — | 1.6% | Apr 9, 2004 | RSniff 1.0 allows remote attackers to cause a denial of service (connection exhaustion) via a large number of connection... |
| CVE-2004-1919 | — | — | 3.1% | Apr 9, 2004 | The hash_strcmp function in hasch.c in Crackalaka 1.0.8 allows remote attackers to cause a denial of service (crash) via... |
| CVE-2004-1917 | — | — | 4.1% | Apr 8, 2004 | Format string vulnerability in test_func_func in LCDProc 0.4.1 and earlier allows remote attackers to execute arbitrary ... |
| CVE-2004-1915 | — | — | 8.7% | Apr 8, 2004 | Buffer overflow in the parse_all_client_messages function in LCDproc 0.4.x up to 0.4.4 allows remote attackers to execut... |
| CVE-2004-1916 | — | — | 4.2% | Apr 8, 2004 | Multiple buffer overflows in LCDProc 0.4.1, and possibly other 0.4.x versions up to 0.4.4, allows remote attackers to ex... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now