{"cve":{"cve_id":"CVE-2004-1094","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.09588,"epss_percentile":0.94847,"epss_as_of":"2026-06-23","description":"Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using (1) a .rjs (skin) file in RealPlayer 10 through RealPlayer 10.5 (6.0.12.1053), RealOne Player 1 and 2, (2) the Restore Backup function in CheckMark Software Payroll 2004/2005 3.9.6 and earlier, (3) CheckMark MultiLedger before 7.0.2, (4) dtSearch 6.x and 7.x, (5) mcupdmgr.exe and mghtml.exe in McAfee VirusScan 10 Build 10.0.21 and earlier, (6) IBM Lotus Notes before 6.5.5, and other products.  NOTE: it is unclear whether this is the same vulnerability as CVE-2004-0575, although the data manipulations are the same.","published_at":"2004-12-01T05:00:00Z","last_modified_at":"2026-06-16T22:07:00.613000Z","cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":null,"nvd_references":["http://www.securityfocus.com/archive/1/420274/100/0/threaded","http://securitytracker.com/id?1011944","http://archives.neohapsis.com/archives/fulldisclosure/2004-10/1044.html","https://exchange.xforce.ibmcloud.com/vulnerabilities/22737","http://www.osvdb.org/19906","http://www.vupen.com/english/advisories/2005/2057","http://www.networksecurity.fi/advisories/lotus-notes.html","http://marc.info/?l=bugtraq&m=109894226007607&w=2","http://www.networksecurity.fi/advisories/payroll.html","http://secunia.com/advisories/19451","http://www.networksecurity.fi/advisories/dtsearch.html","http://www.networksecurity.fi/advisories/mcafee-virusscan.html","http://www.securityfocus.com/bid/11555","http://secunia.com/advisories/17394","https://exchange.xforce.ibmcloud.com/vulnerabilities/17879","http://www.securityfocus.com/archive/1/429361/100/0/threaded","http://www.networksecurity.fi/advisories/multiledger.html","http://www.securityfocus.com/archive/1/445369/100/0/threaded","http://www.kb.cert.org/vuls/id/582498","http://securitytracker.com/id?1012297","http://www.vupen.com/english/advisories/2006/1176","http://securitytracker.com/id?1016817","http://secunia.com/advisories/18194","http://securityreason.com/securityalert/653","http://securityreason.com/securityalert/296","http://secunia.com/advisories/17096","http://service.real.com/help/faq/security/041026_player/EN/","http://www.securiteam.com/windowsntfocus/6Z00W00EAM.html"],"vuln_status":"Modified","trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:02:42.848361Z"},"effective_severity":null,"badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":null,"version_start_inclusive":null,"version_end":"3.9.6","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:*:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.7.5","version_start_inclusive":true,"version_end":"3.7.5","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.7.5:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.9.1","version_start_inclusive":true,"version_end":"3.9.1","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.9.1:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.9.2","version_start_inclusive":true,"version_end":"3.9.2","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.9.2:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.9.3","version_start_inclusive":true,"version_end":"3.9.3","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.9.3:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.9.4","version_start_inclusive":true,"version_end":"3.9.4","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.9.4:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"checkmark-payroll","product_name":"checkmark_payroll","version_start":"3.9.5","version_start_inclusive":true,"version_end":"3.9.5","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:checkmark_payroll:3.9.5:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"multiledger","product_name":"multiledger","version_start":null,"version_start_inclusive":null,"version_end":"7.0.1","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:multiledger:*:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"multiledger","product_name":"multiledger","version_start":"6.0.3","version_start_inclusive":true,"version_end":"6.0.3","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:multiledger:6.0.3:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"multiledger","product_name":"multiledger","version_start":"6.0.5","version_start_inclusive":true,"version_end":"6.0.5","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:multiledger:6.0.5:*:*:*:*:*:*:*"},{"vendor_slug":"checkmark","vendor_name":"checkmark","product_slug":"multiledger","product_name":"multiledger","version_start":"7.0.0","version_start_inclusive":true,"version_end":"7.0.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:checkmark:multiledger:7.0.0:*:*:*:*:*:*:*"},{"vendor_slug":"innermedia","vendor_name":"innermedia","product_slug":"dynazip-library","product_name":"dynazip_library","version_start":"5.00.00","version_start_inclusive":true,"version_end":"5.00.00","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:innermedia:dynazip_library:5.00.00:*:*:*:*:*:*:*"},{"vendor_slug":"innermedia","vendor_name":"innermedia","product_slug":"dynazip-library","product_name":"dynazip_library","version_start":"5.00.01","version_start_inclusive":true,"version_end":"5.00.01","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:innermedia:dynazip_library:5.00.01:*:*:*:*:*:*:*"},{"vendor_slug":"innermedia","vendor_name":"innermedia","product_slug":"dynazip-library","product_name":"dynazip_library","version_start":"5.00.02","version_start_inclusive":true,"version_end":"5.00.02","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:innermedia:dynazip_library:5.00.02:*:*:*:*:*:*:*"},{"vendor_slug":"innermedia","vendor_name":"innermedia","product_slug":"dynazip-library","product_name":"dynazip_library","version_start":"5.00.03","version_start_inclusive":true,"version_end":"5.00.03","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:innermedia:dynazip_library:5.00.03:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realone-player","product_name":"realone_player","version_start":"1.0","version_start_inclusive":true,"version_end":"1.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realone_player:1.0:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realone-player","product_name":"realone_player","version_start":"2.0","version_start_inclusive":true,"version_end":"2.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realone_player:2.0:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.0","version_start_inclusive":true,"version_end":"10.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.0_6.0.12.690","version_start_inclusive":true,"version_end":"10.0_6.0.12.690","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.0_6.0.12.690:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.0_beta","version_start_inclusive":true,"version_end":"10.0_beta","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.0_beta:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.5","version_start_inclusive":true,"version_end":"10.5","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.5_6.0.12.1016_beta","version_start_inclusive":true,"version_end":"10.5_6.0.12.1016_beta","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.5_6.0.12.1016_beta:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.5_6.0.12.1040","version_start_inclusive":true,"version_end":"10.5_6.0.12.1040","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.5_6.0.12.1040:*:*:*:*:*:*:*"},{"vendor_slug":"realnetworks","vendor_name":"RealNetworks","product_slug":"realplayer","product_name":"realplayer","version_start":"10.5_6.0.12.1053","version_start_inclusive":true,"version_end":"10.5_6.0.12.1053","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:a:realnetworks:realplayer:10.5_6.0.12.1053:*:*:*:*:*:*:*"}],"exploit_refs":[],"news":[],"references":[{"url":"http://www.securityfocus.com/archive/1/420274/100/0/threaded","source_type":"MISC","tags":[]},{"url":"http://securitytracker.com/id?1011944","source_type":"MISC","tags":[]},{"url":"http://archives.neohapsis.com/archives/fulldisclosure/2004-10/1044.html","source_type":"MISC","tags":[]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/22737","source_type":"MISC","tags":[]},{"url":"http://www.osvdb.org/19906","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2005/2057","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.networksecurity.fi/advisories/lotus-notes.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://marc.info/?l=bugtraq&m=109894226007607&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.networksecurity.fi/advisories/payroll.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://secunia.com/advisories/19451","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.networksecurity.fi/advisories/dtsearch.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.networksecurity.fi/advisories/mcafee-virusscan.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securityfocus.com/bid/11555","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/17394","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/17879","source_type":"MISC","tags":[]},{"url":"http://www.securityfocus.com/archive/1/429361/100/0/threaded","source_type":"MISC","tags":[]},{"url":"http://www.networksecurity.fi/advisories/multiledger.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://www.securityfocus.com/archive/1/445369/100/0/threaded","source_type":"MISC","tags":[]},{"url":"http://www.kb.cert.org/vuls/id/582498","source_type":"MISC","tags":[]},{"url":"http://securitytracker.com/id?1012297","source_type":"MISC","tags":[]},{"url":"http://www.vupen.com/english/advisories/2006/1176","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://securitytracker.com/id?1016817","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/18194","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://securityreason.com/securityalert/653","source_type":"MISC","tags":[]},{"url":"http://securityreason.com/securityalert/296","source_type":"MISC","tags":[]},{"url":"http://secunia.com/advisories/17096","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"http://service.real.com/help/faq/security/041026_player/EN/","source_type":"MISC","tags":[]},{"url":"http://www.securiteam.com/windowsntfocus/6Z00W00EAM.html","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2004-12-01T05:00:00Z","label":"CVE published","source":null}]}