Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:18688
HistoryDec 19, 2007 - 12:00 a.m.

Google Toolbar Dialog Spoofing Vulnerability

2007-12-1900:00:00
vulners.com
22
JSON

Google Toolbar allows spoofing the information presented in the dialog which
is being displayed when adding a new Google Toolbar button. This can allow
an attacker to convince the users that his button comes from a trusted
domain. This button can then be used to download malicious files or conduct
phishing attacks (e.g. show a login form of a bank).

Affected versions

  • Google Toolbar 5 beta for Internet Explorer
  • Google Toolbar 4 for Internet Explorer
  • Google Toolbar 4 for Firefox (partially)

Technical details:
http://aviv.raffon.net/2007/12/18/GoogleToolbarDialogSpoofingVulnerability.a
spx

–Aviv.

JSON