| | CVE-2004-1324 |  Microsoft | low | 2.6 | 16.7%
| | The Microsoft Windows Media Player 9.0 ActiveX control may allow remote attackers to execute arbitra… | Dec 18, 2004 | Apr 16, 2026 |
| | CVE-2004-1307 |  F5 | high | 7.5 | 5.1%
| | Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remot… | Dec 21, 2004 | Apr 16, 2026 |
| | CVE-2004-0867 | Microsoft | high | 7.5 | 3.6%
| | Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such a… | Dec 23, 2004 | Apr 16, 2026 |
| | CVE-2004-0842 | Microsoft | high | 7.5 | 84.3%
| | Internet Explorer 6.0 SP1 and earlier, and possibly other versions, allows remote attackers to cause… | Dec 23, 2004 | Apr 16, 2026 |
| | CVE-2004-0841 | Microsoft | medium | 5.0 | 56.0%
| | Internet Explorer 6.x allows remote attackers to install arbitrary programs via mousedown events tha… | Dec 23, 2004 | Apr 16, 2026 |
| | CVE-2004-1376 | Microsoft | medium | 5.0 | 11.2%
| | Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote ma… | Dec 30, 2004 | Apr 16, 2026 |
| | CVE-2004-2680 |  Apache | medium | 5.0 | 10.5%
| | mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters pr… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2650 | Apache | medium | 4.9 | 0.1%
| | Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory con… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2343 | Apache | high | 7.2 | 0.2%
| | Apache HTTP Server 2.0.47 and earlier allows local users to bypass .htaccess file restrictions, as s… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1575 | Apache | medium | 5.0 | 3.3%
| | The XML parser in Xerces-C++ 2.5.0 allows remote attackers to cause a denial of service (CPU consump… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1387 | Apache | low | 2.1 | 0.3%
| | The check_forensic script in apache-utils package 1.3.31 allows local users to overwrite or create a… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-0811 | Apache | high | 7.5 | 4.1%
| | Unknown vulnerability in Apache 2.0.51 prevents "the merging of the Satisfy directive," which could … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2679 |  Check Point | high | 7.8 | 0.4%
| | Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive i… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2635 |  Trellix | high | 7.5 | 2.2%
| | An ActiveX control for McAfee Security Installer Control System 4.0.0.81 allows remote attackers to … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1908 | Trellix | medium | 5.0 | 11.6%
| | McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensit… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1906 | Trellix | medium | 5.0 | 10.5%
| | Mcafee FreeScan allows remote attackers to cause a denial of service and possibly arbitrary code via… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2515 |  VMware | high | 7.2 | 0.0%
| | Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privile… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1858 |  HPE | medium | 5.0 | 0.6%
| | HP Web Jetadmin 7.5.2546 allows remote attackers to cause a denial of service (crash) via a malforme… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1811 | HPE | high | 7.5 | 1.3%
| | The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access en… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1486 | HPE | critical | 10.0 | 1.1%
| | Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1480 | HPE | high | 7.5 | 0.5%
| | Unknown vulnerability in the management station in HP StorageWorks Command View XP 1.8B and earlier … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-0951 | HPE | high | 7.5 | 2.3%
| | The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the p… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1461 |  Cisco | high | 7.5 | 0.5%
| | Cisco Secure Access Control Server (ACS) 3.2(3) and earlier spawns a separate unauthenticated TCP co… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1460 | Cisco | high | 7.5 | 0.7%
| | Cisco Secure Access Control Server (ACS) 3.2(3) and earlier, when configured with an anonymous bind … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1459 | Cisco | medium | 5.0 | 0.8%
| | Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication P… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1458 | Cisco | medium | 5.0 | 1.1%
| | The CSAdmin web administration interface for Cisco Secure Access Control Server (ACS) 3.2(2) build 1… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1436 | Cisco | high | 7.5 | 1.2%
| | The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1435 | Cisco | medium | 5.0 | 1.2%
| | Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1434 | Cisco | medium | 5.0 | 2.0%
| | Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.1(0) to 4.1(2), 4.5(… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1433 | Cisco | medium | 5.0 | 3.3%
| | Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1432 | Cisco | medium | 5.0 | 3.3%
| | Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2730 | Microsoft | medium | 4.6 | 0.9%
| | Sysinternals PsTools before 2.05, including (1) PsExec before 1.54, (2) PsGetsid before 1.41, (3) Ps… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2704 | Microsoft | medium | 4.3 | 25.1%
| | Hastymail 1.0.1 and earlier (stable) and 1.1 and earlier (development) does not send the "attachment… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2694 | Microsoft | medium | 5.8 | 17.4%
| | Microsoft Outlook Express 6.0 allows remote attackers to bypass intended access restrictions, load c… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2643 | Microsoft | low | 3.7 | 0.5%
| | Directory traversal vulnerability in Microsoft cabarc allows remote attackers to overwrite files via… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2482 | Microsoft | medium | 5.0 | 21.4%
| | Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail ed… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2476 | Microsoft | low | 2.6 | 17.2%
| | Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (infinite loop … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2434 | Microsoft | medium | 5.0 | 8.6%
| | Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (browser cr… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2383 | Microsoft | medium | 5.1 | 15.3%
| | Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to bypass cross-frame scripting … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2307 | Microsoft | medium | 5.0 | 9.9%
| | Microsoft Internet Explorer 6.0.2600 on Windows XP allows remote attackers to cause a denial of serv… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2291 | Microsoft | high | 7.5 | 16.4%
| | Microsoft Windows Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code vi… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2219 | Microsoft | low | 2.6 | 15.1%
| | Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar to facilitate phishin… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2179 | Microsoft | medium | 5.0 | 11.8%
| | asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2137 | Microsoft | medium | 5.0 | 33.2%
| | Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger t… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-2011 | Microsoft | low | 2.6 | 9.5%
| | msxml3.dll in Internet Explorer 6.0.2600.0 allows remote attackers to cause a denial of service (cra… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1560 | Microsoft | medium | 5.0 | 14.1%
| | Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service (mssqlserver service h… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1527 | Microsoft | medium | 5.0 | 0.4%
| | Microsoft Internet Explorer 6.0 SP1 does not properly handle certain character strings in the Path a… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1416 | Microsoft | medium | 5.1 | 1.4%
| | pnxr3260.dll in the RealOne 2.0 build 6.0.11.868 browser plugin, as used in Internet Explorer, allow… | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1198 | Microsoft | medium | 5.0 | 0.9%
| | Microsoft Internet Explorer allows remote attackers to cause a denial of service (application crash … | Dec 31, 2004 | Apr 16, 2026 |
| | CVE-2004-1173 | Microsoft | high | 7.5 | 7.5%
| | Internet Explorer 6 allows remote attackers to bypass the popup blocker via the document object mode… | Dec 31, 2004 | Apr 16, 2026 |