CVE-2004-0594

Exp

The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.

Published: 2004-07-27 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]

NVD Status：Modified，CVE State: published

View at NVD, CVE.org, EUVD

Threat Intelligence & Risk Assessment for CVE-2004-0594

EPSS CVSS CWE Exploit-DB Affected OS Tracker

Conclusion & alert: CVE-2004-0594 is rated High Exploit Risk (65/100): CVSS Medium severity, with high exploitation likelihood (EPSS 54.86%, 99th percentile). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2004-0594

EDB-ID	Source	Kind	Published	Link
660	exploit_db	edb	2004-11-27	Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2004-0594

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	77.73%	54.86%	-22.88%
2	2025-12-28	78.00%	77.73%	-0.27%
3	2025-12-27	—	78.00%	—

Full EPSS history (18 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2004-0594

CVSS metrics for this CVE.

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.1	2.0	MEDIUM	`AV:N/AC:H/Au:N/C:P/I:P/A:P` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:H) Exploitation requires uncommon or highly specific conditions. Authentication (AU:N) No authentication is required. Confidentiality impact (C:P) Partial confidentiality impact. Integrity impact (I:P) Partial integrity impact. Availability impact (A:P) Partial availability impact.	4.9	6.4	[email protected]

Weakness enumeration for CVE-2004-0594

CWE-367 MITRE ↗

OS Trackers for CVE-2004-0594

vendor	priority	summary	link
`redhat`	high	—	https://access.redhat.com/security/cve/CVE-2004-0594

Affected software / configurations for CVE-2004-0594

Vendor	Product	Version	Raw CPE
openpkg	openpkg	2.0	cpe:2.3:a:openpkg:openpkg:2.0:::::::*
openpkg	openpkg	2.1	cpe:2.3:a:openpkg:openpkg:2.1:::::::*
avaya	converged_communications_server	2.0	cpe:2.3:h:avaya:converged_communications_server:2.0:::::::*
debian	debian_linux	3.0	cpe:2.3:o:debian:debian_linux:3.0:::::::*
hp	hp-ux	b.11.00	cpe:2.3:o:hp:hp-ux:b.11.00:::::::*
hp	hp-ux	b.11.11	cpe:2.3:o:hp:hp-ux:b.11.11:::::::*
hp	hp-ux	b.11.22	cpe:2.3:o:hp:hp-ux:b.11.22:::::::*
hp	hp-ux	b.11.23	cpe:2.3:o:hp:hp-ux:b.11.23:::::::*
trustix	secure_linux	1.5	cpe:2.3:o:trustix:secure_linux:1.5:::::::*
trustix	secure_linux	2.0	cpe:2.3:o:trustix:secure_linux:2.0:::::::*
trustix	secure_linux	2.1	cpe:2.3:o:trustix:secure_linux:2.1:::::::*
php	php	>= 4.0, < 4.3.7	cpe:2.3:a:php:php::::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:beta1::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:beta2::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:beta3::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:beta4::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:rc1::::::
php	php	5.0.0	cpe:2.3:a:php:php:5.0.0:rc2::::::

References for CVE-2004-0594

URL	Tags
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000847	Broken Link
http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023908.html	Broken Link URL Repurposed
http://marc.info/?l=bugtraq&m=108981780109154&w=2	Third Party Advisory
http://marc.info/?l=bugtraq&m=108982983426031&w=2	Third Party Advisory
http://marc.info/?l=bugtraq&m=109051444105182&w=2	Third Party Advisory
http://marc.info/?l=bugtraq&m=109181600614477&w=2	Third Party Advisory
http://www.debian.org/security/2004/dsa-531	Broken Link
http://www.debian.org/security/2005/dsa-669	Mailing List
http://www.gentoo.org/security/en/glsa/glsa-200407-13.xml	Third Party Advisory
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:068	Broken Link
http://www.novell.com/linux/security/advisories/2004_21_php4.html	Broken Link
http://www.redhat.com/support/errata/RHSA-2004-392.html	Broken Link
http://www.redhat.com/support/errata/RHSA-2004-395.html	Broken Link
http://www.redhat.com/support/errata/RHSA-2004-405.html	Broken Link
http://www.redhat.com/support/errata/RHSA-2005-816.html	Broken Link
http://www.securityfocus.com/bid/10725	Broken Link Third Party Advisory VDB Entry
http://www.trustix.org/errata/2004/0039/	Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/16693	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10896	Broken Link

cvelogic Threat Intelligence