Vulnerabilities > CVE-2013-2307 - Address Bar Spoofing vulnerability in Yahoo Yahoo! Browser 1.2.0/1.4.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE network
yahoo
Summary
The Yahoo! Browser application before 1.4.3 for Android allows remote attackers to spoof the address bar via a crafted web site.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Seebug
| bulletinFamily | exploit |
| description | Bugtraq ID:59525 CVE ID:CVE-2013-2307 Yahoo! Browser for Android是一款安卓平台下的浏览器 Yahoo! Browser for Android 1.4.3之前版本打开新窗口时存在一个安全漏洞,允许远程攻击者利用漏洞伪造地址栏,可进行网络钓鱼等攻击 0 Yahoo! Browser v1.4.2 厂商解决方案 用户可联系厂商获得相应的升级程序或补丁: https://play.google.com/store/apps/details?id=jp.co.yahoo.android.ybrowser&hl=en |
| id | SSV:60776 |
| last seen | 2017-11-19 |
| modified | 2013-04-28 |
| published | 2013-04-28 |
| reporter | Root |
| title | Yahoo! Browser for Android 地址栏伪造漏洞(CVE-2013-2307) |