Maxthon directory traversal
| maxthon-directory-traversal (20033) |  Medium Risk |
Description:
Maxthon (formerly MyIE2) could allow a remote attacker to traverse directories on the Web server. This is caused by a design error within the security identification of a plug-in that is improperly protected from being included and accessed on external Web sites when using the script tag. A remote attacker could exploit this vulnerability by using the readFile() and writeFile() functions to read and write arbitrary files on the system.
Consequences:
Obtain Information
Remedy:
Upgrade to the latest version of Maxthon (1.2.2 or later), available from the Maxthon Browser Download Web page. See References.
References:
- Maxthon Browser Download Web page: Maxthon Browser Download.
- Maxthon browser multiple vulnerabilities advisory, April 08, 2005: Author: Aviv Raff .
- Maxthon Browser Web site: Maxthon Tabbed Browser.
- BID-13074: Maxthon Web Browser Plug-in API Directory Traversal Vulnerability
- CVE-2005-1090: Directory traversal vulnerability in the readFile and writeFile API for Maxthon 1.2.0 and 1.2.1 allows remote attackers to read or write arbitrary files.
- OSVDB ID: 15423: Maxthon Browser Plug-in readFile / writeFile Traversal Arbitrary File Manipulation
- SA14918: Maxthon Security ID Disclosure Vulnerability
Platforms Affected:
- Mysoft Technology Maxthon 1.2.0
- Mysoft Technology Maxthon 1.2.1
Reported:
Apr 08, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net