Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2611

Description

The Change Permissions function in the Sophster suite before 0.9.6 28 May 2004 (aka 0.9.6-r5), possibly including Sophster, FreeSophster, and FreeSophsterPAM, removes the (1) setuid, (2) setgid, and (3) sticky bits when changing a file, which might allow attackers to gain privileges or conduct other unauthorized activities.

Affected products

Steven Schaefer/Sophster7 versions
cpe:2.3:a:steven_schaefer:sophster:0.9.5_r8:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:steven_schaefer:sophster:0.9.5_r8:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.5_r10:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.5_r12:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.5_r15:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.6_r1:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.6_r2:*:*:*:*:*:*:*
- cpe:2.3:a:steven_schaefer:sophster:0.9.6_r3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000