June 04, 2004

Favicon, security hole

I find this exploit amusing for some reason. You're probably familiar with "favicons," the images web servers can deliver to some browsers so you can have a tiny logo (or whatever) instead of a generic bookmark graphic on your address bar or in your bookmarks. Normally they're really small, like 15 pixels square. Well the folks at GreyMagic discovered that the Opera web browser could handle much wider graphics and that the graphic would cover up the URL in the address bar. This means a malicious web site could cover their hostname with a graphic displaying the URL of another site, say, "http://www.ebay.com." Here's the sample graphic from GreyMagic's site:

sample URL obscuring favicon

I wish they had a screenshot of what this looked like in Opera, the demonstration page is only a demonstration if you have the browser. Opera has already issued a patch.

Posted to Comp.Security by extra88 at June 4, 2004 12:13 PM | TrackBack
Email this entry to:


Your email address:


Message (optional):


Comments

Found a full screenshot: http://www.infoguerra.com.br/infonews/fotos/golpes/opera_favico.jpg

Posted by: jay at June 6, 2004 01:56 AM
Post a comment









Remember personal info?