Unrated severityNVD Advisory· Published Jul 27, 2004· Updated Apr 16, 2026

CVE-2004-0594

Description

The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.

Affected products

OpenPKG/Openpkg2 versions
cpe:2.3:a:openpkg:openpkg:2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:openpkg:openpkg:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:openpkg:openpkg:2.1:*:*:*:*:*:*:*
PHP/PHP7 versions
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:php:php:*:*:*:*:*:*:*:*range: >=4.0,<4.3.7
- cpe:2.3:a:php:php:5.0.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.0.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.0.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.0.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.0.0:rc2:*:*:*:*:*:*
Avaya/Converged Communications Server
cpe:2.3:h:avaya:converged_communications_server:2.0:*:*:*:*:*:*:*
Debian/Debian Linux
cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
HP/Hpux4 versions
cpe:2.3:o:hp:hp-ux:b.11.00:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:hp:hp-ux:b.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:b.11.11:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:b.11.22:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:b.11.23:*:*:*:*:*:*:*
Trustix/Secure Linux3 versions
cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvdThird Party Advisory
marc.infonvdThird Party Advisory
marc.infonvdThird Party Advisory
marc.infonvdThird Party Advisory
www.gentoo.org/security/en/glsa/glsa-200407-13.xmlnvdThird Party Advisory
www.securityfocus.com/bid/10725nvdBroken LinkThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/16693nvdThird Party AdvisoryVDB Entry
distro.conectiva.com.br/atualizacoes/nvdBroken Link
lists.grok.org.uk/pipermail/full-disclosure/2004-July/023908.htmlnvdBroken LinkURL Repurposed
www.debian.org/security/2004/dsa-531nvdBroken Link
www.debian.org/security/2005/dsa-669nvdMailing List
www.mandrakesecure.net/en/advisories/advisory.phpnvdBroken Link
www.novell.com/linux/security/advisories/2004_21_php4.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2004-392.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2004-395.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2004-405.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2005-816.htmlnvdBroken Link
www.trustix.org/errata/2004/0039/nvdBroken Link
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10896nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.062
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000