CVE-2004-1019
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2004-1019
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow" results.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHP unserialize() 代码执行漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHP是一种使用较为流行的Web脚本语言。 PHP4.3.10之前版本及5.x系列至5.0.2版本中串并转换代码存在缺陷,可导致拒绝服务或执行任意代码。 远程攻击者可通过提交不可信的数据给unserialize函数,利用此漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2004-1019
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2004-1019
Please Login to view more intelligence information
- http://www.php.net/release_4_3_10.phpx_refsource_CONFIRM
- http://www.hardened-php.net/advisories/012004.txtx_refsource_MISC
- http://www.novell.com/linux/security/advisories/2005_02_php4_mod_php4.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00029.htmlvendor-advisoryx_refsource_SUSE
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10511vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2004-1019
Same Patch Batch · n/a · 2004-12-22 · 72 CVEs total
| CVE-2004-1284 | mpg123 playlist.c 缓冲区溢出漏洞 | |
| CVE-2004-1309 | Mplayer demux_bmp.c 缓冲区溢出漏洞 | |
| CVE-2004-1304 | file ELF 栈溢出漏洞 | |
| CVE-2004-1291 | qwik-smtpd HELO 缓冲区溢出漏洞 | |
| CVE-2004-1290 | pgn2web pgn2web.c 缓冲区溢出漏洞 | |
| CVE-2004-1289 | pcal 多个 缓冲区溢出漏洞 | |
| CVE-2004-1288 | o3read o3read.c 缓冲区溢出漏洞 | |
| CVE-2004-1287 | NASM preproc.c 缓冲区溢出漏洞 | |
| CVE-2004-1286 | NapShare auto.c 缓冲区溢出漏洞 | |
| CVE-2004-1285 | Mplayer asf_mmst_streaming.c 缓冲区溢出漏洞 | |
| CVE-2004-1292 | RingtoneTools parse_emelody.c 缓冲区溢出漏洞 | |
| CVE-2004-1283 | Mesh Mesh::type 缓冲区溢出漏洞 | |
| CVE-2004-1282 | LinPopUp string.c 缓冲区溢出漏洞 | |
| CVE-2004-1281 | Junkie ftp_retr 远程文件覆盖漏洞 | |
| CVE-2004-1280 | junkie gui_tview_popup.c 远程命令执行漏洞 | |
| CVE-2004-1279 | jpegtoavi get_file_list_stdin 缓冲区溢出漏洞 | |
| CVE-2004-1278 | jcabc2ps parse.c 缓冲区溢出漏洞 | |
| CVE-2004-1277 | IglooFTP ftplist.c 文件覆盖漏洞 | |
| CVE-2004-1276 | IglooFTP upload 文件重写漏洞 | |
| CVE-2004-1275 | html2hdml remove_quote() 缓冲区溢出漏洞 |
Showing top 20 of 72 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2004-1019
No comments yet