CVE-2005-1091 Information

Description

Maxthon 1.2.0 and 1.2.1 allows remote attackers to bypass the security ID and use restricted plugin API functions via script that includes the max.src file into the source page.

Reference

http://secunia.com/advisories/14918 http://www.osvdb.org/15424 http://www.raffon.net/advisories/maxthon/multvulns.html http://www.securityfocus.com/bid/13073