Google Chrome HTTPS Address Bar Spoofing

2012-01-09T00:00:00
ID SECURITYVULNS:DOC:27533
Type securityvulns
Reporter Securityvulns
Modified 2012-01-09T00:00:00

Description

Google awarded one of our security researchers a Chromium Security Reward for an HTTPS address bar spoofing bug in Chrome 14 and 15 (although it may be present in older versions too). The bug was fixed in Chrome 16, most browsers seem to be updated and we're happy to share technical details with the research community.

http://blog.acrossecurity.com/2012/01/google-chrome-https-address-bar.html

or

http://bit.ly/wt9qXs

Enjoy the reading!

Mitja Kolsek, CEO

ACROS, d.o.o. Makedonska ulica 113, SI - 2000 Maribor, Slovenia Tel +386.2.3000.280 Fax +386.2.3000.282 Web http://www.acrossecurity.com Blg http://blog.acrossecurity.com Twt @acrossecurity

ACROS Security: Finding Your Digital Vulnerabilities Before Others Do