CVE-2012-6095

LOW

—CVSS v3

1.2CVSS v2

0.06% EPSS (exploit probability)

CWE-362CWE

Description

ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the (1) MKD or (2) XMKD commands.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE