Issue metadata
Sign in to add a comment
|
Security: Address bar spoofing with itunes page on iOS
Reported by
chromium...@gmail.com,
Aug 5 2016
|
||||||||||||||||||||||
Issue descriptionVERSION Chrome Version: 52.0.2743.84 Operating System: iOS REPRODUCTION CASE 1. Disable your internet connection. 2. Lunch a new incognito window. 3. Navigate to https://itunes.apple.com/ 4. Enable your internet connection and switch the tab (incognito tab), then navigate to any web site "google.com" 5. Go back to the original URL (https://itunes.apple.com) and observe. As I mentioned, you should disable and enable your internet connection because if you want to navigate to https://itunes.apple.com with enabled connection almost every time itunes page simply redirects to itms:// which is AppStore native app, and that's why I mentioned to disable your internet connection.
,
Aug 5 2016
Eugene: could you please take a look at this issue? Thanks!
,
Aug 8 2016
Chrome should purge web view after navigating back to external URL. This will destroy Back-Forward Navigation cache, but there is no good alternative (loading about:black destroys Forward part of the cache and is less reliable).
,
Aug 10 2016
This looks like fixed in https://codereview.chromium.org/2225943002/
,
Aug 10 2016
Thanks for reminding :)
,
Aug 11 2016
,
Nov 17 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Dec 9 2016
Security>UX component is deprecated in favor of the Team-Security-UX label |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by chromium...@gmail.com
, Aug 5 2016