Bug 15047
| Summary: | "%5C" is mysteriously stripped from hostnames without being rejected | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Brett Wilson (Google) <brettw> |
| Component: | Page Loading | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED INVALID | ||
| Severity: | Normal | CC: | ddkilzer, mrowe |
| Priority: | P2 | Keywords: | HasReduction, InRadar |
| Version: | 523.x (Safari 3) | ||
| Hardware: | Mac | ||
| OS: | OS X 10.4 | ||
Brett Wilson (Google)
Safari seems to strip "%5c" from host names, which could lead to possible phishing problems. This appears to happen in the network stack you use, as KURL seems to not touch it.
The issue is that some applications might choose to display this URL
as unescaped:
http://www.wellsfargo.com\login.evil.ru
But when sent through Safari as
http://www.wellsfargo.com%5Clogin.evil.ru
It will be sent over the network as
http://www.wellsfargo.comlogin.evil.ru
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
David Kilzer (:ddkilzer)
<rdar://problem/5431486>
Mark Rowe (bdash)
This bug is in a framework below WebKit, so the bug will be tracked via <rdar://problem/5431486>. Thanks for the report.
Closing as INVALID as this is not a WebKit-level bug.