CVE-2005-1091

High

7.5/10

Summary

Maxthon 1.2.0 and 1.2.1 allows remote attackers to bypass the security ID and use restricted plugin API functions via script that includes the max.src file into the source page.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published May 02, 2005

CVE-2005-1091

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS