LiveActive security incident?Get immediate response
CVE archive

December 2004

Browse CVE records published in December 2004, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 298 matching CVEs · Page 2 of 6.

Unknown · CVSS Not scored

CVE-2004-1211: Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause...

Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.

Published Dec 15, 2004 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2004-1311: Integer overflow in the real_setup_and_get_header function in real.c for Unix MPlayer 1.0pre5 allows remote...

Integer overflow in the real_setup_and_get_header function in real.c for Unix MPlayer 1.0pre5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a Real RTSP streaming media file with a -1 content-length field, which leads to a heap-based buffer overflow.

Published Dec 22, 2004 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2004-1188: The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same...

The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer overflow via (1) RMF_TAG, (2) DATA_TAG, (3) PROP_TAG, (4) MDPR_TAG, and (5) CONT_TAG values, a different vulnerability than CVE-2004-1187.

Published Dec 22, 2004 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2004-1227: Directory traversal vulnerability in SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to rea...

Directory traversal vulnerability in SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to read arbitrary files and possibly execute arbitrary PHP code via .. (dot dot) sequences in the (1) module, (2) action, or (3) theme parameters to index.php, (4) the theme parameter to Login.php, and possibly other parameters or scripts.

Published Dec 15, 2004 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2004-1315: viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting wor...

viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which is then processed by PHP exec, as exploited by the Santy.A worm.

Published Dec 31, 2004 · Updated Aug 8, 2024