Issue metadata
Sign in to add a comment
|
Adress bar spoofing on chrome android
Reported by
narendra...@gmail.com,
May 6 2017
|
||||||||||||||||||||||
Issue descriptionSteps to reproduce the problem: It is same issue as https://bugs.chromium.org/p/chromium/issues/detail?id=683314 I know this is same as that issue but this can spoof url bar on chrome android browser 1. Just visit https://www.xn--80ak6aa92e.com/ 2. You will see spoofed content under www.apple.com What is the expected behavior? Content should be provided as in url bar "https://www.xn--80ak6aa92e.com/" not as "www.apple.com" What went wrong? Punycode makes it possible to register domains with foreign characters. It works by converting individual domain label to an alternative format using only ASCII characters. For example, the domain "xn--s7y.co" is equivalent to "短.co". Did this work before? N/A Chrome version: <Copy from: 'about:version'> Channel: n/a OS Version: 57.0.2987.132 Flash Version:
,
May 9 2017
,
May 15 2017
,
Aug 16 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by och...@chromium.org
, May 8 2017