← back
CVE-2004-2611

CVE-2004-2611

EPSS 0.3%
The Change Permissions function in the Sophster suite before 0.9.6 28 May 2004 (aka 0.9.6-r5), possibly including Sophster, FreeSophster, and FreeSophsterPAM, removes the (1) setuid, (2) setgid, and (3) sticky bits when changing a file, which might allow attackers to gain privileges or conduct other unauthorized activities.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securitytracker.com/id?1010431https://exchange.xforce.ibmcloud.com/vulnerabilities/16359http://www.osvdb.org/6657http://www.schaefer.dhcp.biz/CHANGELOG.txt