Maxthon Browser Multiple Security Vulnerabilities

Maxthon Browser is prone to multiple security vulnerabilities including a security-bypass, an arbitrary command execution, and multiple HTML-injection vulnerabilities.

An attacker can exploit these issues to execute arbitrary script code within the context of the browser, steal cookie-based authentication credentials, bypass certain security restrictions, and perform unauthorized actions in the affected application and execute arbitrary commands within the context of the webserver.

Maxthon is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus