Vulnerabilities > CVE-2005-1091 - Information Disclosure vulnerability in Maxthon Web Browser Plug-in API Security ID
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Maxthon 1.2.0 and 1.2.1 allows remote attackers to bypass the security ID and use restricted plugin API functions via script that includes the max.src file into the source page.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |