Safari browser bug
MajorSecurity has published a description of the vulnerability in the Safari Mobile browser under iOS 5.1. C using this vulnerability can be fake address in the address bar.
The problem is related to incorrect processing of javascript's window.open () call in javascript. The bug allows you to display in the address bar URL of another site, thus the victim can be misleading.
To demonstrate the vulnerability in practice, the experts made a special test page. You can go to it with Safari browser from under iOS 5.1 - and click the Demo button.
')
http://majorsecurity.net/html5/ios51-demo.html
After you clicked the Demo button, Safari browser will open a new window where www.apple.com is in the address bar, but in fact apple.com opens in a frame on majorsecurity.net, that is, the user has not actually left majorsecurity. net.
Of course, this bug will be noticed by intruders. As you may have guessed, this bug can be used for phishing attacks. For example, a user is directed to a phishing website, which is an exact copy of the “native” online banking system (or Gmail, Facebook, etc.), while the real site invisibly opens in the frame - and the user sees the authentic URL in the browser address bar.
The vulnerability was tested and confirmed in iOS 5.0.1 and iOS 5.1, it was checked on different devices: iPhone4, iPhone4S, iPad2 and iPad3. Probably, the vulnerability is also present in previous versions of iOS.
The problem is related to incorrect processing of javascript's window.open () call in javascript. The bug allows you to display in the address bar URL of another site, thus the victim can be misleading.
To demonstrate the vulnerability in practice, the experts made a special test page. You can go to it with Safari browser from under iOS 5.1 - and click the Demo button.
')
http://majorsecurity.net/html5/ios51-demo.html
After you clicked the Demo button, Safari browser will open a new window where www.apple.com is in the address bar, but in fact apple.com opens in a frame on majorsecurity.net, that is, the user has not actually left majorsecurity. net.
Of course, this bug will be noticed by intruders. As you may have guessed, this bug can be used for phishing attacks. For example, a user is directed to a phishing website, which is an exact copy of the “native” online banking system (or Gmail, Facebook, etc.), while the real site invisibly opens in the frame - and the user sees the authentic URL in the browser address bar.
The vulnerability was tested and confirmed in iOS 5.0.1 and iOS 5.1, it was checked on different devices: iPhone4, iPhone4S, iPad2 and iPad3. Probably, the vulnerability is also present in previous versions of iOS.
Source: https://habr.com/ru/post/140743/
All Articles