2004 CVE Vulnerabilities
2,707 CVEs published in 2004.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2004-1002 | HIGH | 7.5 | 2.7% | Mar 1, 2005 | Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) vi... |
| CVE-2004-0940 | HIGH | 7.8 | 4.8% | Feb 9, 2005 | Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI ... |
| CVE-2004-2339 | HIGH | 8.4 | 1.4% | Dec 31, 2004 | Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrar... |
| CVE-2004-2013 | HIGH | 7.8 | 0.6% | Dec 31, 2004 | Integer overflow in the SCTP_SOCKOPT_DEBUG_NAME SCTP socket option in socket.c in the Linux kernel 2.4.25 and earlier al... |
| CVE-2004-1842 | HIGH | 8.8 | 1.7% | Dec 31, 2004 | Cross-site request forgery (CSRF) vulnerability in Php-Nuke 6.x through 7.1.0 allows remote attackers to gain administra... |
| CVE-2004-2172 | HIGH | 7.5 | 6.8% | Dec 31, 2004 | EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the ... |
| CVE-2004-2397 | HIGH | 7.5 | 0.9% | Dec 31, 2004 | The web-based Management Console in Blue Coat Security Gateway OS 3.0 through 3.1.3.13 and 3.2.1, when importing a priva... |
| CVE-2004-0816 | HIGH | 7.5 | 11.5% | Dec 23, 2004 | Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a de... |
| CVE-2004-1083 | HIGH | 7.5 | 1.9% | Dec 3, 2004 | Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ fil... |
| CVE-2004-0346 | HIGH | 7.8 | 5.7% | Nov 23, 2004 | Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privile... |
| CVE-2004-0079 | HIGH | 7.5 | 9.5% | Nov 23, 2004 | The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a... |
| CVE-2004-0747 | HIGH | 7.8 | 1.6% | Oct 20, 2004 | Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that caus... |
| CVE-2004-0689 | HIGH | 7.1 | 0.4% | Sep 28, 2004 | KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow loca... |
| CVE-2004-0458 | HIGH | 7.5 | 3.2% | Sep 28, 2004 | mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a missing argument, which ... |
| CVE-2004-1714 | HIGH | 7.1 | 0.9% | Aug 11, 2004 | BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.i... |
| CVE-2004-0210 | HIGH | 7.8 | 7.6% | Aug 6, 2004 | The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain pa... |
| CVE-2004-0213 | HIGH | 7.8 | 21.3% | Aug 6, 2004 | Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which all... |
| CVE-2004-1703 | HIGH | 8.8 | 2.0% | Jul 30, 2004 | Fusion News 3.6.1 allows remote attackers to add user accounts, if the administrator is logged in, via a comment that co... |
| CVE-2004-0119 | HIGH | 7.5 | 39.6% | Jun 1, 2004 | The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows re... |
| CVE-2004-0389 | HIGH | 7.5 | 52.5% | Jun 1, 2004 | RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via mal... |
| CVE-2004-0365 | HIGH | 7.5 | 5.9% | May 4, 2004 | The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to c... |
| CVE-2004-0174 | HIGH | 7.5 | 11.5% | May 4, 2004 | Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on certain platforms, allows ... |
| CVE-2004-1967 | HIGH | 8.8 | 1.6% | Apr 25, 2004 | Cross-site request forgery (CSRF) vulnerabilities in (1) cp_forums.php, (2) cp_usergroup.php, (3) cp_ipbans.php, (4) myh... |
| CVE-2004-0217 | HIGH | 7 | 0.5% | Apr 15, 2004 | The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red Hat Linux allows local u... |
Check if your code is affected by 2004 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now