VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2611

CVE-2004-2611

Description

The Change Permissions function in the Sophster suite before 0.9.6 28 May 2004 (aka 0.9.6-r5), possibly including Sophster, FreeSophster, and FreeSophsterPAM, removes the (1) setuid, (2) setgid, and (3) sticky bits when changing a file, which might allow attackers to gain privileges or conduct other unauthorized activities.

Affected products

8
  • cpe:2.3:a:steven_schaefer:sophster:0.9.5_r10:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:steven_schaefer:sophster:0.9.5_r10:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.5_r12:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.5_r15:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.5_r8:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.6_r1:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.6_r2:*:*:*:*:*:*:*
    • cpe:2.3:a:steven_schaefer:sophster:0.9.6_r3:*:*:*:*:*:*:*
  • Range: <0.9.6-r5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.