Security: Address Bar Spoofing
Reported by
xhz...@gmail.com,
Jul 5
|
|||
Issue descriptionSteps to reproduce the problem: 1. Open chromes webview from anywhere like the Facebook's app 2. Open click any link in the website that uses the attribute `target="_blank"` 3. The new domain will show up for a second till it's fully loaded 4. Now the other domain is shown up so the user still thinks that he is in the previous domain which may be a trusted website! What is the expected behavior? It seems like the web viewer doesn't work well with links uses to open in new tab so once it loads it retrieves the parent's domain instead of the current! What went wrong? This can be used to spoof the users in some websites like adding a comment and tricking the victim when he open the URL in the comment he will think that he is still there but really he have gone to another website which may be a spoofing one! Did this work before? N/A Chrome version: 67.0.3396.87 Channel: stable OS Version: 7.1.1 Flash Version: Shockwave Flash 30.0 r0
,
Jul 10
Unfortunately webview isn't in control of that UI element; each instance of this is an application bug. Torne, is there a crbug to dup this against?
,
Jul 10
I don't think so. If you can reproduce this in Facebook you should report it to them, or to any other app where this occurs. |
|||
►
Sign in to add a comment |
|||
Comment 1 by paulir...@chromium.org
, Jul 9Summary: Security: Address Bar Spoofing (was: Adress Bar Spoofing )