Vulnerabilities > CVE-2012-0063 - Plugin Update Security Bypass vulnerability in Tucaneando Tucan 0.3.10
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
tucaneando
Summary
Insecure plugin update mechanism in tucan through 0.3.10 could allow remote attackers to perform man-in-the-middle attacks and execute arbitrary code ith the permissions of the user running tucan.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |