An “address bar spoofing” vulnerability relates to a bug in a web browser that allows a malicious website to change its actual URL and instead display the wrong URL, usually one for a legitimate website.
Address bar spoofing vulnerabilities have been around since the dawn of the web, but they have never been more dangerous.
While desktop browsers have several security tokens and features that can be used to detect when malicious code alters the address bar to display a fake URL, this is not possible in mobile browsers, where the screen size is small and security features are largely lacking in desktop browsers.
Since the address bar is the only and last line of defense in mobile browsers, spoofing vulnerabilities in the address bar of smartphones and other mobile devices is much more dangerous.
TEN ADDRESSABLE BUGS FOUND IN SEVEN MOBILE BROWSERS
In a report released today by cybersecurity firm Rapid7, the company said it worked with Pakistani security researcher Rafay Baloch to discover ten new phishing vulnerabilities in seven browser applications. Cell phone, mobile phone.
The browsers affected are big names like Apple Safari, Opera Touch, and Opera Mini, but also niche apps like Bolt, RITS, UC Browser, and Yandex Browser.
The problems were discovered earlier this year and reported to browser manufacturers in August. The large providers fixed the problems immediately, while the smaller providers didn’t even bother to respond to the researchers, leaving their browsers vulnerable to attack.
Rapid7 admin says that if the browser has the opportunity to update the URL of the address bar, a malicious site could force the browser to change the URL to change the URL between loading the page and updating the address bar to the address wrong.
You can find a more detailed breakdown of the technical “tricks” for each bug here, as described by Baloch.
Exploitation of any of these errors requires (1) an outdated browser and (2) an attacker who can lure users to malicious websites.
Beardsley believes that the attacks are easy to mount and recommends that users update their browsers as soon as possible or switch to browsers that are not affected by these bugs.