2 matches found
The vulnerability of Google Chrome’s browser allows a malicious actor to replace URLs.
Google Chrome browser contains a vulnerability related to the incorrect processing of bidirectional IRI identifiers in the UnescapeURLWithOffsetsImpl function in net/base/escape.cc. Exploiting this vulnerability allows malicious actors to replace URLs with specially crafted Unicode text that is...
Design/Logic Flaw
The UnescapeURLWithOffsetsImpl function in net/base/escape.cc in Google Chrome before 34.0.1847.116 does not properly handle bidirectional Internationalized Resource Identifiers IRIs, which makes it easier for remote attackers to spoof URLs via crafted use of right-to-left RTL Unicode text...