CVE-2004-0594

critical

Description

The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.

References

Advisories
More

https://exchange.xforce.ibmcloud.com/vulnerabilities/16693

http://www.gentoo.org/security/en/glsa/glsa-200407-13.xml

http://marc.info/?l=bugtraq&m=109181600614477&w=2

http://marc.info/?l=bugtraq&m=109051444105182&w=2

http://marc.info/?l=bugtraq&m=108982983426031&w=2

http://marc.info/?l=bugtraq&m=108981780109154&w=2

http://www.debian.org/security/2005/dsa-669

Details

Source: Mitre, NVD

Published: 2004-07-27

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.86915