Loading
ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the (1) MKD or (2) XMKD commands.
Use CWE-362, Proftpd vendor hub and Proftpd product page to widen CVE-2012-6095 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2019-12815, CVE-2010-20103 and CVE-2020-9273 for nearby disclosures in the same product family.